mirror of
https://github.com/github/codeql.git
synced 2025-12-17 01:03:14 +01:00
85283d63ce
Calling a function of the CreatePorcess* family of functions, which may result in a security vulnerability if the path contains spaces.
4 lines
219 B
Plaintext
4 lines
219 B
Plaintext
# CWE-428: Unquoted Search Path or Element
|
|
+ semmlecode-cpp-queries/Security/CWE/CWE-428/UnsafeCreateProcessCall.ql: /CWE/CWE-428
|
|
@name NULL application name with an unquoted path in call to CreateProcess (CWE-428)
|