codeql

hohn/codeql

Fork 0

mirror of https://github.com/github/codeql.git synced 2025-12-23 12:16:33 +01:00

Commit Graph

Author	SHA1	Message	Date
thank_you	3ace49549a	Add tests for SqlAlchemy modeling library After researching SqlAlchemy and it's various query methods, I discovered several types of SQL injection possibilities. The SQLExecution.py file contains these examples and can be broken up into two types of injections. Injections requiring the text() taint-step and injections NOT requiring the text() taint step.	2021-05-10 16:12:15 -04:00

Author

SHA1

Message

Date

thank_you

3ace49549a

Add tests for SqlAlchemy modeling library

After researching SqlAlchemy and it's various query methods, I discovered several types of SQL injection possibilities.

The SQLExecution.py file contains these examples and can be broken up into two types of injections. Injections requiring the text() taint-step and injections NOT requiring the text() taint step.

2021-05-10 16:12:15 -04:00

1 Commits