hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-05-28 18:11:25 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
e694b02c99dec2ab07567c15020c00a4325a3510
codeql/javascript/ql/src/Security/CWE-020/IncompleteUrlSubstringSanitization.ql
Arthur Baars cf4b834536 Address comments
2022-03-11 14:25:34 +01:00

15 lines
410 B
Plaintext
Raw Blame History

/**
* @name Incomplete URL substring sanitization
* @description Security checks on the substrings of an unparsed URL are often vulnerable to bypassing.
* @kind problem
* @problem.severity warning
* @security-severity 7.8
* @precision high
* @id js/incomplete-url-substring-sanitization
* @tags correctness
* security
* external/cwe/cwe-020
*/
import IncompleteUrlSubstringSanitization
Reference in New Issue View Git Blame Copy Permalink