mirror of
https://github.com/github/codeql.git
synced 2026-05-20 14:17:11 +02:00
25d232b815
Agent-Logs-Url: https://github.com/github/codeql/sessions/fc2c7f71-3493-4bf7-9136-34571a1d4b47 Co-authored-by: owen-mc <62447351+owen-mc@users.noreply.github.com>
26 lines
1.0 KiB
Java
26 lines
1.0 KiB
Java
import org.hibernate.Session;
|
|
import org.hibernate.SharedSessionContract;
|
|
import org.hibernate.query.QueryProducer;
|
|
|
|
public class Hibernate {
|
|
|
|
public static String source() { return null; }
|
|
|
|
public static void test(
|
|
Session session, SharedSessionContract sharedSessionContract, QueryProducer queryProducer) {
|
|
session.createQuery(source()); // $ sqlInjection
|
|
session.createSQLQuery(source()); // $ sqlInjection
|
|
|
|
sharedSessionContract.createQuery(source()); // $ sqlInjection
|
|
sharedSessionContract.createSQLQuery(source()); // $ sqlInjection
|
|
|
|
queryProducer.createNativeQuery(source()); // $ sqlInjection
|
|
queryProducer.createNativeMutationQuery(source()); // $ sqlInjection
|
|
queryProducer.createQuery(source()); // $ sqlInjection
|
|
queryProducer.createMutationQuery(source()); // $ sqlInjection
|
|
queryProducer.createSelectionQuery(source()); // $ sqlInjection
|
|
queryProducer.createSelectionQuery(source(), Object.class); // $ sqlInjection
|
|
queryProducer.createSQLQuery(source()); // $ sqlInjection
|
|
}
|
|
}
|