hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-28 18:25:24 +02:00
Code Issues Packages Projects Releases Wiki Activity

Update java/ql/src/semmle/code/java/security/OgnlInjection.qll

Browse Source 
Co-authored-by: Anders Schack-Mulligen <aschackmull@users.noreply.github.com>
This commit is contained in:
Tony Torralba
2021-07-29 15:08:27 +02:00
committed by GitHub
parent 7a898a04f3
commit b20d53cfd4
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
java/ql/src/semmle/code/java/security/OgnlInjection.qll
View File

@@ -107,7 +107,7 @@ private predicate getAccessorStep(DataFlow::Node n1, DataFlow::Node n2) {
private predicate setExpressionStep(DataFlow::Node n1, DataFlow::Node n2) {
exists(MethodAccess ma, Method m |
n1.asExpr() = ma.getArgument(0) and
n2.asExpr() = ma.getQualifier() and
n2.(PostUpdateNode).getPreUpdateNode().asExpr() = ma.getQualifier() and
ma.getMethod() = m and
m.getDeclaringType().getASupertype*() instanceof TypeExpressionAccessor
|