hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-17 01:03:14 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
7a9a259c0331432dc81ffede1b096ddd2313f648
codeql/javascript/ql/test/query-tests/Security/CWE-094/CodeInjection/angularjs.js
Asger F 9be041e27d JS: Update OK-style comments to $-style
2025-02-28 13:27:28 +01:00

67 lines
2.5 KiB
JavaScript
Raw Blame History

angular.module('myModule', [])
.controller('MyController', function($scope) {
$scope.$on(location.search);
})
.controller('MyController', function($scope) {
$scope.$apply('hello');
})
.controller('MyController', function($scope) {
var scope = $scope;
scope.$apply(location.search); // $ Alert[js/code-injection]
})
.controller('MyController', function($scope) {
$scope.$apply(location.search); // $ Alert[js/code-injection]
})
.controller('MyController', function($scope) {
$scope.$applyAsync(location.search); // $ Alert[js/code-injection]
})
.controller('MyController', function($scope) {
$scope.$eval(location.search); // $ Alert[js/code-injection]
})
.controller('MyController', function($scope) {
$scope.$evalAsync(location.search); // $ Alert[js/code-injection]
})
.controller('MyController', function($scope) {
$scope.$watch(location.search); // $ Alert[js/code-injection]
})
.controller('MyController', function($scope) {
$scope.$watchCollection(location.search); // $ Alert[js/code-injection]
})
.controller('MyController', function($scope) {
$scope.$watchGroup(location.search); // $ Alert[js/code-injection]
})
.controller('MyController', function($compile) {
$compile(location.search); // $ Alert[js/code-injection]
})
.controller('MyController', function($compile) {
$compile('hello');
})
.controller('MyController', function($compile) {
$compile(location.search); // $ Alert[js/code-injection]
})
.controller('MyController', function($compile) {
var compile = $compile;
compile(location.search); // $ Alert[js/code-injection]
})
.controller('MyController', function($parse) {
$parse(location.search); // $ Alert[js/code-injection]
})
.controller('MyController', function($interpolate) {
$interpolate(location.search); // $ Alert[js/code-injection]
})
.controller('MyController', function($filter) {
$filter('orderBy')([], location.search); // $ Alert[js/code-injection]
})
.controller('MyController', function($filter) {
$filter('orderBy')([], 'hello');
})
.controller('MyController', function($filter) {
$filter('random')([], location.search);
})
.controller('MyController', function($someService) {
$someService('orderBy')([], location.search);
})
.controller('MyController', function($someService) {
$someService(location.search);
});
Reference in New Issue View Git Blame Copy Permalink