hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-18 09:43:15 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
66737402c20fc83b3d3a654dcccf4b26c901b100
codeql/javascript/ql/test/query-tests/Security/CWE-079/DomBasedXss/winjs.js
Asger F 64d39da5f8 JS: Accept Sources/Sink tags
2025-02-28 13:29:30 +01:00

6 lines
216 B
JavaScript
Raw Blame History

function test(elt) {
var tainted = document.location.search.substring(1); // $ Source
WinJS.Utilities.setInnerHTMLUnsafe(elt, tainted); // $ Alert
WinJS.Utilities.setOuterHTMLUnsafe(elt, tainted); // $ Alert
}
Reference in New Issue View Git Blame Copy Permalink