hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-03-23 07:56:54 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
65bcf0f526b2c7d9b230e7d7dc55b0e38e018cd7
codeql/javascript/ql/src/Security/CWE-089/SqlInjection.ql
Max Schaefer 65bcf0f526 JavaScript: Refactor security queries for uniformity.
2018-11-14 09:16:40 +00:00

22 lines
764 B
Plaintext
Raw Blame History

/**
* @name Database query built from user-controlled sources
* @description Building a database query from user-controlled sources is vulnerable to insertion of
* malicious code by the user.
* @kind problem
* @problem.severity error
* @precision high
* @id js/sql-injection
* @tags security
* external/cwe/cwe-089
*/
import javascript
import semmle.javascript.security.dataflow.SqlInjection
import semmle.javascript.security.dataflow.NosqlInjection
from DataFlow::Configuration cfg, DataFlow::Node source, DataFlow::Node sink
where (cfg instanceof SqlInjection::Configuration or
cfg instanceof NosqlInjection::Configuration) and
cfg.hasFlow(source, sink)
select sink, "This query depends on $@.", source, "a user-provided value"
Reference in New Issue View Git Blame Copy Permalink