mirror of
https://github.com/github/codeql.git
synced 2025-12-17 17:23:36 +01:00
8 lines
250 B
JavaScript
8 lines
250 B
JavaScript
const express = require('express');
|
|
const expat = require('node-expat');
|
|
|
|
express().get('/some/path', function(req) {
|
|
var parser = new expat.Parser();
|
|
parser.write(req.param("some-xml")); // NOT OK: expat expands internal entities by default
|
|
});
|