hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-21 11:16:30 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
2dd862661bfa62080e68f4ac8281da5d901b6986
codeql/javascript/ql/test/query-tests/Security/CWE-022/TaintedPath/torrents.js
Esben Sparre Andreasen cc768345d0 JS: add security tests for malicious torrents
2019-11-14 13:54:19 +01:00

9 lines
242 B
JavaScript
Raw Blame History

const parseTorrent = require('parse-torrent'),
fs = require('fs');
function getTorrentData(dir, torrent){
let name = parseTorrent(torrent).name,
loc = dir + "/" + name + ".torrent.data";
return fs.readFileSync(loc); // NOT OK
}
Reference in New Issue View Git Blame Copy Permalink