hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-01-08 12:10:22 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
0fa3cf7912bce5aba6145fa793313aa4e0f8478b
codeql/javascript/ql/test/library-tests/frameworks/NodeJSLib/src/https.js
Robert Marsh 4da9d6d795 JavaScript: add support for Electron http client
2018-08-17 10:16:51 -07:00

20 lines
500 B
JavaScript
Raw Blame History

var https = require('https');
var url = require('url');
var server = https.createServer(function(req, res) {
// BAD: a request parameter is incorporated without validation into a URL redirect
let target = url.parse(req.url, true).query.target;
res.writeHead(302, { Location: target });
req.headers.cookie;
req.headers.foo;
})
https.createServer(function(req, res) {
res.setHeader('Content-Type', 'text/html');
res.write("foo");
res.end("bar");
})
https.request({ auth: "auth" });
Reference in New Issue View Git Blame Copy Permalink