mirror of
https://github.com/github/codeql.git
synced 2026-04-12 10:34:02 +02:00
e419fc9599
Only the first argument to eval, instance_eval, send, class_send and module_send is interpreted as Ruby code.
17 lines
1.6 KiB
Plaintext
17 lines
1.6 KiB
Plaintext
edges
|
|
| CodeInjection.rb:3:12:3:17 | call to params : | CodeInjection.rb:6:10:6:13 | code |
|
|
| CodeInjection.rb:3:12:3:17 | call to params : | CodeInjection.rb:18:20:18:23 | code |
|
|
| CodeInjection.rb:3:12:3:17 | call to params : | CodeInjection.rb:21:21:21:24 | code |
|
|
nodes
|
|
| CodeInjection.rb:3:12:3:17 | call to params : | semmle.label | call to params : |
|
|
| CodeInjection.rb:6:10:6:13 | code | semmle.label | code |
|
|
| CodeInjection.rb:9:10:9:15 | call to params | semmle.label | call to params |
|
|
| CodeInjection.rb:18:20:18:23 | code | semmle.label | code |
|
|
| CodeInjection.rb:21:21:21:24 | code | semmle.label | code |
|
|
subpaths
|
|
#select
|
|
| CodeInjection.rb:6:10:6:13 | code | CodeInjection.rb:3:12:3:17 | call to params : | CodeInjection.rb:6:10:6:13 | code | This code execution depends on $@. | CodeInjection.rb:3:12:3:17 | call to params | a user-provided value |
|
|
| CodeInjection.rb:9:10:9:15 | call to params | CodeInjection.rb:9:10:9:15 | call to params | CodeInjection.rb:9:10:9:15 | call to params | This code execution depends on $@. | CodeInjection.rb:9:10:9:15 | call to params | a user-provided value |
|
|
| CodeInjection.rb:18:20:18:23 | code | CodeInjection.rb:3:12:3:17 | call to params : | CodeInjection.rb:18:20:18:23 | code | This code execution depends on $@. | CodeInjection.rb:3:12:3:17 | call to params | a user-provided value |
|
|
| CodeInjection.rb:21:21:21:24 | code | CodeInjection.rb:3:12:3:17 | call to params : | CodeInjection.rb:21:21:21:24 | code | This code execution depends on $@. | CodeInjection.rb:3:12:3:17 | call to params | a user-provided value |
|