mirror of
https://github.com/github/codeql.git
synced 2025-12-17 17:23:36 +01:00
23 lines
725 B
JavaScript
23 lines
725 B
JavaScript
var express = require('express');
|
|
|
|
var app = express();
|
|
|
|
app.get('/some/path', function(req, res) {
|
|
// NOT OK
|
|
var f = new Function("return wibbles[" + req.param("wobble") + "];");
|
|
// NOT OK
|
|
require("vm").runInThisContext("return wibbles[" + req.param("wobble") + "];");
|
|
var runC = require("vm").runInNewContext;
|
|
// NOT OK
|
|
runC("return wibbles[" + req.param("wobble") + "];");
|
|
var vm = require("vm");
|
|
// NOT OK
|
|
vm.compileFunction(req.param("code_compileFunction"));
|
|
// NOT OK
|
|
var script = new vm.Script(req.param("code_Script"));
|
|
// NOT OK
|
|
var mdl = new vm.SourceTextModule(req.param("code_SourceTextModule"));
|
|
// NOT OK
|
|
vm.runInContext(req.param("code_runInContext"), vm.createContext());
|
|
});
|