hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-03-06 15:49:08 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
06b391ef9ba35fdcee626e40a42d229884243f52
codeql/docs/language/ql-training/query-examples/java/data-flow-java-2.ql
james 40be3bc8cf docs: rename ql-training-rst > ql-training 
(cherry picked from commit 65573492e7)
2019-09-10 16:03:03 +01:00

8 lines
289 B
Plaintext
Raw Blame History

import java
import semmle.code.java.dataflow.DataFlow::DataFlow
from MethodAccess ma, StringConcat stringConcat
where
ma.getMethod().getName().matches("sparql%Query") and
localFlow(exprNode(stringConcat), exprNode(ma.getArgument(0)))
select ma, "SPARQL query vulnerable to injection."
Reference in New Issue View Git Blame Copy Permalink