hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-18 09:43:15 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
codeql-cli-2.23.7
codeql/javascript/ql/test/query-tests/Security/CWE-918/Request/middleware.ts
Michael Nebel 2e0ce44fde Javascript: Update test files.
2025-04-23 15:41:41 +02:00

18 lines
635 B
TypeScript
Raw Permalink Blame History

import { NextRequest, NextResponse } from 'next/server';
export async function middleware(req: NextRequest) {
const target = req.nextUrl // $ Source[js/request-forgery]
const target2 = target.searchParams.get('target'); // $ Source[js/request-forgery]
if (target) {
const res = await fetch(target) // $ Alert[js/request-forgery]
const data = await res.text()
return new NextResponse(data)
}
if (target2) {
const res = await fetch(target2); // $ Alert[js/request-forgery]
const data = await res.text();
return new NextResponse(data);
}
return NextResponse.next()
}
Reference in New Issue View Git Blame Copy Permalink