hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-18 01:33:15 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
codeql-cli-2.20.6
codeql/java/ql/test/query-tests/security/CWE-611/CdaUtilTests.java
Tony Torralba 2cbb7ed296 Java: Add XXE sinks for MDHT
2023-07-31 11:13:17 +02:00

24 lines
1012 B
Java
Raw Permalink Blame History

import java.io.InputStream;
import java.io.InputStreamReader;
import java.net.Socket;
import org.openhealthtools.mdht.uml.cda.util.CDAUtil;
import org.xml.sax.InputSource;
public class CdaUtilTests {
public void test(Socket sock) throws Exception {
InputStream is = sock.getInputStream();
InputSource iSrc = new InputSource(new InputStreamReader(is));
CDAUtil.load(is); // $ hasTaintFlow
CDAUtil.load(iSrc); // $ hasTaintFlow
CDAUtil.load(is, (CDAUtil.ValidationHandler) null); // $ hasTaintFlow
CDAUtil.load(is, (CDAUtil.LoadHandler) null); // $ hasTaintFlow
CDAUtil.load(null, null, is, null); // $ hasTaintFlow
CDAUtil.load(iSrc, (CDAUtil.ValidationHandler) null); // $ hasTaintFlow
CDAUtil.load(iSrc, (CDAUtil.LoadHandler) null); // $ hasTaintFlow
CDAUtil.load(null, null, iSrc, null); // $ hasTaintFlow
CDAUtil.loadAs(is, null); // $ hasTaintFlow
CDAUtil.loadAs(is, null, null); // $ hasTaintFlow
}
}
Reference in New Issue View Git Blame Copy Permalink