hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-17 01:03:14 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
4a59e69722233898bc7854c0040d2703dedf7498
codeql/javascript/ql/test/query-tests/Security/CWE-079/DomBasedXss/string-manipulations.js
Asger Feldthaus 4137d3f971 JS: Split CWE-079 tests into their own folders
2020-10-16 17:32:36 +01:00

13 lines
670 B
JavaScript
Raw Blame History

document.write(document.location.href.charCodeAt(0)); // OK
document.write(document.location); // NOT OK
document.write(document.location.href); // NOT OK
document.write(document.location.href.valueOf()); // NOT OK
document.write(document.location.href.sup()); // NOT OK
document.write(document.location.href.toUpperCase()); // NOT OK
document.write(document.location.href.trimLeft()); // NOT OK
document.write(String.fromCharCode(document.location.href)); // NOT OK
document.write(String(document.location.href)); // NOT OK
document.write(escape(document.location.href)); // OK (for now)
document.write(escape(escape(escape(document.location.href)))); // OK (for now)
Reference in New Issue View Git Blame Copy Permalink