hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-01-30 06:42:57 +01:00
Code Issues Packages Projects Releases Wiki Activity

Update ql/src/Security/CWE-117/LogInjection.qhelp

Browse Source 
Co-authored-by: Matt Pollard <mattpollard@users.noreply.github.com>
This commit is contained in:
Tony Torralba
2021-11-24 13:57:34 +01:00
committed by GitHub
parent f2017b626e
commit cc8d9bdc7f
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
ql/src/Security/CWE-117/LogInjection.qhelp
View File

@@ -9,7 +9,7 @@ be able to forge new log entries.</p>
<p>Forgery can occur if a user provides some input with characters that are interpreted
when the log output is displayed. If the log is displayed as a plain text file, then new
line characters can be used by a malicious user. If the log is displayed as HTML, then
arbitrary HTML may be include to spoof log entries.</p>
arbitrary HTML may be included to spoof log entries.</p>
</overview>
<recommendation>