mirror of
https://github.com/github/codeql.git
synced 2025-12-17 17:23:36 +01:00
12 lines
307 B
JavaScript
12 lines
307 B
JavaScript
import express from 'express';
|
|
import { WebView } from 'react-native';
|
|
|
|
var app = express();
|
|
|
|
app.get('/some/path', function(req, res) {
|
|
let tainted = req.param("code");
|
|
<WebView injectedJavaScript={tainted}/>; // NOT OK
|
|
let wv = <WebView/>;
|
|
wv.injectJavaScript(tainted); // NOT OK
|
|
});
|