hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-19 10:23:15 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
c20ee76826e10318f8f39c6fae901b743c2e8254
codeql/ruby/ql/test/query-tests/security/cwe-601
History
Harry Maclean 314683d5fb Ruby: Improve UrlRedirect query using Rails routes 
Handlers for non-GET requests aren't vulnerable to URL redirect attacks,
because browsers won't initiate non-GET requests when you click a link.

We can use Rails routing information, if present, to filter out any
handlers for non-GET requests.
2022-02-02 16:26:20 +13:00
..
UrlRedirect.expected
Ruby: Improve UrlRedirect query using Rails routes
2022-02-02 16:26:20 +13:00
UrlRedirect.qlref
Move files to ruby subfolder
2021-10-15 11:47:28 +02:00
UrlRedirect.rb
Ruby: Improve UrlRedirect query using Rails routes
2022-02-02 16:26:20 +13:00