hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-18 18:10:39 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
z80coder/query-pack-release-candidate-2
codeql/javascript/ql/test/library-tests/Security/heuristics/sinks.js
Pavel Avgustinov b55526aa58 QL code and tests for C#/C++/JavaScript.
2018-08-02 17:53:23 +01:00

79 lines
1.4 KiB
JavaScript
Raw Permalink Blame History

(function() {
script = sink;
script + sink;
run(sink);
o.script = sink
getScript() + sink
script += sink;
sink += script;
o.run(sink);
html = sink;
html + sink;
html(sink);
sql = sink;
sql + sink;
query(sink);
absolute = sink;
absolute + sink;
readFile(sink);
regexp = sink;
regexp + sink;
match(sink);
redirect = sink;
redirect + sink;
redirect(sink);
})();
app.get('/some/path', function(req, res) {
var file = req.query.file;
var FILE = req.query.file;
});
(function() {
"function(){ var x = " + sink;
sink + "= function(){";
"x => " + sink;
"foo[" + sink + "]";
"<div>" + sink;
'<div foo="foo"' + sink + 'bar="bar">';
"SELECT " + sink;
"/foo/bar" + sink;
"foo/bar/" + sink;
"foo/" + sink + "/bar";
})();
(function() {
csrf = sink;
csrf + sink;
})();
(function() {
throw new Error('request url [' + req.url + '] does not start with [' + prefix + ']')
})();
(function() {
errors.push("Got authorization of '" + req.headers.authorization + "' expected '" + auth + "'")
})();
app.get('/some/path', function(req, res) {
var file = req.query.file || x;
var file = x || req.query.file;
var file = req.query.file || x || y;
var file = x || req.query.file || y;
var file = x || y || req.query.file;
});
app.get('/some/path', function(req, res) {
var code = req.query.inviteCode;
})();
Reference in New Issue View Git Blame Copy Permalink