hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-03-15 03:56:45 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
cfdeb0edf5589697c17f066b0229a614379bc4de
codeql/javascript/ql/experimental/adaptivethreatmodeling/src/SqlInjectionATM.ql
tiferet 4a6de3e444 Apply suggestion from code review
2022-11-30 17:25:19 -08:00

25 lines
880 B
Plaintext
Raw Blame History

/**
* For internal use only.
*
* @name SQL database query built from user-controlled sources (experimental)
* @description Building a database query from user-controlled sources is vulnerable to insertion of
* malicious code by the user.
* @kind path-problem
* @scored
* @problem.severity error
* @security-severity 8.8
* @id js/ml-powered/sql-injection
* @tags experimental security
* external/cwe/cwe-089
*/
import experimental.adaptivethreatmodeling.SqlInjectionATM
import ATM::ResultsInfo
import DataFlow::PathGraph
from AtmConfig cfg, DataFlow::PathNode source, DataFlow::PathNode sink, float score
where cfg.hasBoostedFlowPath(source, sink, score)
select sink.getNode(), source, sink,
"(Experimental) This may be a database query that depends on $@. Identified using machine learning.",
source.getNode(), "a user-provided value", score
Reference in New Issue View Git Blame Copy Permalink