Merge pull request #361 from smowton/smowton/admin/fix-broken-qhelp-links

Fix OWASP broken links
2026-01-29 22:32:58 +01:00 · 2020-10-01 14:28:30 +01:00
parent 1be34c0c90 4af5765275
commit e8710612d8
3 changed files with 3 additions and 3 deletions
--- a/ql/src/Security/CWE-022/TaintedPath.qhelp
+++ b/ql/src/Security/CWE-022/TaintedPath.qhelp
@@ -46,6 +46,6 @@ information.
 </example>

 <references>
-<li>OWASP: <a href="https://www.owasp.org/index.php/Path_traversal">Path Traversal</a>.</li>
+<li>OWASP: <a href="https://owasp.org/www-community/attacks/Path_Traversal">Path Traversal</a>.</li>
 </references>
 </qhelp>
--- a/ql/src/Security/CWE-022/ZipSlip.qhelp
+++ b/ql/src/Security/CWE-022/ZipSlip.qhelp
@@ -63,7 +63,7 @@ Snyk:
 </li>
 <li>
 OWASP:
-<a href="https://www.owasp.org/index.php/Path_traversal">Path Traversal</a>.
+<a href="https://owasp.org/www-community/attacks/Path_Traversal">Path Traversal</a>.
 </li>
 </references>
 </qhelp>
--- a/ql/src/Security/CWE-643/XPathInjection.qhelp
+++ b/ql/src/Security/CWE-643/XPathInjection.qhelp
@@ -38,7 +38,7 @@ which are safely resolved at runtime using the <code>goxpath.Opts</code> structu
 </example>

 <references>
-<li>OWASP: <a href="https://www.owasp.org/index.php?title=Testing_for_XPath_Injection_(OTG-INPVAL-010)">Testing for XPath Injection</a>.</li>
+<li>OWASP: <a href="https://owasp.org/www-project-web-security-testing-guide/latest/4-Web_Application_Security_Testing/07-Input_Validation_Testing/09-Testing_for_XPath_Injection">Testing for XPath Injection</a>.</li>
 <li>OWASP: <a href="https://www.owasp.org/index.php/XPATH_Injection">XPath Injection</a>.</li>
 </references>
 </qhelp>