JS: add email HTML body as XSS sink

2026-03-23 16:06:47 +01:00 · 2018-10-26 16:43:49 +01:00
parent 48634d4c9a
commit e0d5557ef4
4 changed files with 42 additions and 4 deletions
--- a/javascript/ql/src/Security/CWE-079/Xss.ql
+++ b/javascript/ql/src/Security/CWE-079/Xss.ql
@@ -14,7 +14,7 @@
 import javascript
 import semmle.javascript.security.dataflow.DomBasedXss::DomBasedXss

-from Configuration xss, DataFlow::Node source, DataFlow::Node sink
+from Configuration xss, DataFlow::Node source, Sink sink
 where xss.hasFlow(source, sink)
-select sink, "Cross-site scripting vulnerability due to $@.",
-       source, "user-provided value"
+select sink, sink.getVulnerabilityKind() + " vulnerability due to $@.",
+       source, "user-provided value"