Java: Fix reference in deprecated code.

2026-05-14 11:19:27 +02:00 · 2026-05-04 10:34:23 +02:00
parent 17fded4aa5
commit c7904b12c8
1 changed files with 1 additions and 1 deletions
--- a/java/ql/src/experimental/Security/CWE/CWE-094/SpringImplicitViewManipulation.ql
+++ b/java/ql/src/experimental/Security/CWE/CWE-094/SpringImplicitViewManipulation.ql
@@ -43,7 +43,7 @@ deprecated private predicate mayBeExploitable(Method m) {
    // hence, here we check for the param type to be a Java `String`.
    p.getType() instanceof TypeString and
    // Exclude cases where a regex check is applied on a parameter to prevent false positives.
-    not m.(SpringRequestMappingMethod).getValue().matches("%{%:[%]%}%")
+    not m.(SpringRequestMappingMethod).getAValue().matches("%{%:[%]%}%")
  ) and
  not maybeATestMethod(m)
 }