hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-06-15 18:01:10 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
b25ea03211dfd19650520f4d2bd07e5648f396fb
codeql/ruby/ql/test/query-tests/security/cwe-601
History
Harry Maclean 314683d5fb Ruby: Improve UrlRedirect query using Rails routes 
Handlers for non-GET requests aren't vulnerable to URL redirect attacks,
because browsers won't initiate non-GET requests when you click a link.

We can use Rails routing information, if present, to filter out any
handlers for non-GET requests.
2022-02-02 16:26:20 +13:00
..
UrlRedirect.expected
Ruby: Improve UrlRedirect query using Rails routes
2022-02-02 16:26:20 +13:00
UrlRedirect.qlref
Move files to ruby subfolder
2021-10-15 11:47:28 +02:00
UrlRedirect.rb
Ruby: Improve UrlRedirect query using Rails routes
2022-02-02 16:26:20 +13:00