codeql/javascript/ql/experimental/adaptivethreatmodeling/test/endpoint_large_scale/getALikelyExternalLibraryCall.expected

| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:3:17:3:34 | require("express") |
| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:4:20:4:41 | require ... arser") |
| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:8:11:8:19 | express() |
| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:10:1:10:26 | app.use ... json()) |
| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:10:9:10:25 | bodyParser.json() |
| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:12:1:15:2 | app.pos ... T OK\\n}) |
| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:13:11:13:32 | JSON.pa ... body.x) |
| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:14:3:14:33 | getColl ... d: v }) |
| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:20:1:24:2 | app.pos ... T OK\\n}) |
| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:21:11:21:32 | JSON.pa ... body.x) |
| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:22:3:22:36 | getMong ... d: v }) |
| autogenerated/NosqlAndSqlInjection/typed/typedClient.ts:23:3:23:36 | getMong ... d: v }) |
| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:1:16:1:33 | require("mongodb") |
| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:8:5:11:6 | dbClien ... \\n    }) |
| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:9:12:9:41 | client. ... B_NAME) |
| autogenerated/NosqlAndSqlInjection/untyped/dbo.js:10:14:10:20 | fn(err) |
| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:1:15:1:32 | require('express') |
| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:2:11:2:19 | express() |
| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:7:1:21:2 | app.get ...  `);\\n}) |
| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:10:22:20:6 | kit.gra ... \\n    `) |
| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:25:1:34:2 | app.get ... T OK\\n}) |
| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:27:22:27:41 | graphql(`foo ${id}`) |
| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:29:23:29:48 | withCus ... equest) |
| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:30:22:30:43 | myGraph ... ${id}`) |
| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:32:26:32:45 | graphql.defaults({}) |
| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:33:5:33:29 | withDef ... ${id}`) |
| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:36:21:36:47 | require ... quest") |
| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:38:1:49:2 | app.get ... T OK\\n}) |
| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:40:26:45:6 | request ... \\n    }) |
| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:47:26:47:45 | request.defaults({}) |
| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:48:5:48:57 | withDef ... id}` }) |
| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:54:1:59:2 | app.get ... T OK\\n}) |
| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:56:26:56:50 | kit2.gr ... ${id}`) |
| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:58:27:58:79 | kit2.re ... id}` }) |
| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:62:14:66:2 | buildSc ... \\n  }\\n`) |
| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:73:1:113:2 | app.get ...   })\\n}) |
| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:75:24:75:71 | nativeG ... , root) |
| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:77:3:92:4 | fetch(" ... })\\n  }) |
| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:82:11:91:6 | JSON.st ... \\n    }) |
| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:94:3:112:4 | fetch(" ... })\\n  }) |
| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:99:11:111:6 | JSON.st ... \\n    }) |
| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:115:16:115:41 | require ... ithub') |
| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:116:1:121:2 | app.get ... T OK\\n}) |
| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:117:17:117:40 | github. ... ("foo") |
| autogenerated/NosqlAndSqlInjection/untyped/graphql.js:120:26:120:49 | kit.gra ... ${id}`) |
| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:5:13:5:21 | express() |
| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:15:21:15:39 | ajv.compile(schema) |
| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:21:1:37:2 | app.pos ...  });\\n}) |
| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:22:5:36:6 | MongoCl ... \\n    }) |
| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:23:19:23:38 | db.collection('doc') |
| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:25:23:25:48 | JSON.pa ... y.data) |
| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:26:13:26:30 | checkSchema(query) |
| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:27:13:27:27 | doc.find(query) |
| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:29:13:29:39 | ajv.val ...  query) |
| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:30:13:30:27 | doc.find(query) |
| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:33:13:33:27 | doc.find(query) |
| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:35:9:35:23 | doc.find(query) |
| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:41:19:44:2 | Joi.obj ... ed()\\n}) |
| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:41:19:44:24 | Joi.obj ... title') |
| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:42:11:42:22 | Joi.string() |
| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:42:11:42:33 | Joi.str ... uired() |
| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:43:12:43:23 | Joi.string() |
| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:43:12:43:34 | Joi.str ... uired() |
| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:46:1:64:2 | app.pos ...  });\\n}) |
| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:47:5:63:6 | MongoCl ... \\n    }) |
| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:48:19:48:38 | db.collection('doc') |
| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:50:23:50:48 | JSON.pa ... y.data) |
| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:51:26:51:50 | joiSche ... (query) |
| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:53:13:53:27 | doc.find(query) |
| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:55:13:55:27 | doc.find(query) |
| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:58:19:58:48 | joiSche ... (query) |
| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:59:13:59:27 | doc.find(query) |
| autogenerated/NosqlAndSqlInjection/untyped/json-schema-validator.js:61:13:61:27 | doc.find(query) |
| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:1:14:1:28 | require("http") |
| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:2:13:2:26 | require("url") |
| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:3:14:3:30 | require("ldapjs") |
| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:4:16:6:2 | ldap.cr ... 89",\\n}) |
| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:10:10:11:27 | input\\n  ... "\\\\2a") |
| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:10:10:12:27 | input\\n  ... "\\\\28") |
| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:10:10:13:27 | input\\n  ... "\\\\29") |
| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:10:10:14:27 | input\\n  ... "\\\\5c") |
| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:10:10:15:27 | input\\n  ... "\\\\00") |
| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:10:10:16:27 | input\\n  ... "\\\\2f") |
| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:19:16:69:2 | http.cr ... T OK\\n}) |
| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:20:11:20:34 | url.par ... , true) |
| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:28:3:28:59 | client. ... es) {}) |
| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:30:3:34:3 | client. ...  {}\\n  ) |
| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:37:3:45:3 | client. ...  {}\\n  ) |
| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:61:3:61:67 | client. ... es) {}) |
| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:63:24:65:3 | ldap.pa ... ))`\\n  ) |
| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:66:3:66:78 | client. ... es) {}) |
| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:68:14:68:66 | ldap.pa ... dn) {}) |
| autogenerated/NosqlAndSqlInjection/untyped/ldap.js:71:1:71:28 | server. ...  => {}) |
| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-from.js:1:16:1:32 | require("marsdb") |
| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:1:17:1:34 | require("express") |
| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:2:20:2:41 | require ... arser") |
| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:3:12:3:40 | require ... -from') |
| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:5:13:5:21 | express() |
| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:1:7:50 | app.use ... rue })) |
| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:7:9:7:49 | bodyPar ... true }) |
| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:9:1:15:2 | app.pos ... {});\\n}) |
| autogenerated/NosqlAndSqlInjection/untyped/marsdb-flow-to.js:14:3:14:41 | db.myDo ...  => {}) |
| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:1:17:1:34 | require("express") |
| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:2:12:2:28 | require("marsdb") |
| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:3:16:3:37 | require ... arser") |
| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:7:13:7:21 | express() |
| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:1:9:50 | app.use ... rue })) |
| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:9:9:9:49 | bodyPar ... true }) |
| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:11:1:17:2 | app.pos ... {});\\n}) |
| autogenerated/NosqlAndSqlInjection/untyped/marsdb.js:16:3:16:36 | doc.fin ...  => {}) |
| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:1:17:1:34 | require("express") |
| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:2:15:2:34 | require("minimongo") |
| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:3:16:3:37 | require ... arser") |
| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:9:13:9:21 | express() |
| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:1:11:50 | app.use ... rue })) |
| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:11:9:11:49 | bodyPar ... true }) |
| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:13:1:19:2 | app.pos ... ry);\\n}) |
| autogenerated/NosqlAndSqlInjection/untyped/minimongo.js:18:3:18:17 | doc.find(query) |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:1:17:1:34 | require('express') |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:2:17:2:34 | require('mongodb') |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:3:20:3:41 | require ... arser') |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:7:13:7:21 | express() |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:1:9:50 | app.use ... rue })) |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:9:9:9:49 | bodyPar ... true }) |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:11:1:35:2 | app.pos ...  });\\n}) |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:14:5:34:6 | MongoCl ... \\n    }) |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:15:17:15:36 | db.collection('doc') |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:18:7:18:21 | doc.find(query) |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:21:7:21:48 | doc.fin ... itle }) |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:7:24:53 | doc.fin ... r(1) }) |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:24:25:24:50 | query.b ... bstr(1) |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:29:9:29:34 | doc.fin ... itle }) |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:32:9:32:46 | doc.fin ... tle) }) |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:32:27:32:43 | JSON.parse(title) |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:37:1:45:2 | app.get ...  });\\n}) |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:39:5:44:6 | MongoCl ... \\n    }) |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:40:17:40:36 | db.collection('doc') |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:43:7:43:21 | doc.find(query) |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:47:1:56:2 | app.pos ...  });\\n}) |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:50:5:55:6 | MongoCl ... \\n    }) |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:51:17:51:36 | db.collection('doc') |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:54:7:54:21 | doc.find(query) |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:58:1:67:2 | app.pos ... \\t});\\n}) |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:61:2:66:3 | MongoCl ... y);\\n\\t}) |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:13:62:31 | client.db("MASTER") |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:62:13:62:49 | client. ... ('doc') |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:65:3:65:17 | doc.find(query) |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:69:1:86:2 | app.pos ...  });\\n}) |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:72:3:78:4 | MongoCl ... );\\n  }) |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:73:5:74:30 | client\\n ... B_NAME) |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:73:5:75:25 | client\\n ... "logs") |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:73:5:77:27 | client\\n ...  tag }) |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:80:21:80:39 | require("./dbo.js") |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:81:3:83:23 | importe ... "logs") |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:81:3:85:25 | importe ...  tag }) |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:89:1:91:2 | app.get ... am);\\n}) |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:94:3:99:4 | MongoCl ... );\\n  }) |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:95:15:95:34 | db.collection('doc') |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:98:5:98:19 | doc.find(query) |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:102:1:104:2 | app.pos ... ry);\\n}) |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:108:3:113:4 | MongoCl ... );\\n  }) |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:109:15:109:34 | db.collection('doc') |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb.js:112:5:112:19 | doc.find(query) |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:1:17:1:34 | require('express') |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:2:17:2:34 | require('mongodb') |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:3:20:3:41 | require ... arser') |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:7:13:7:21 | express() |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:1:9:51 | app.use ... lse })) |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:9:9:9:50 | bodyPar ... alse }) |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:11:1:20:2 | app.pos ...  });\\n}) |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:14:5:19:6 | MongoCl ... \\n    }) |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:15:17:15:36 | db.collection('doc') |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:18:7:18:21 | doc.find(query) |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:22:1:31:2 | app.pos ...  });\\n}) |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:25:5:30:6 | MongoCl ... \\n    }) |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:26:17:26:36 | db.collection('doc') |
| autogenerated/NosqlAndSqlInjection/untyped/mongodb_bodySafe.js:29:7:29:21 | doc.find(query) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:2:17:2:34 | require('express') |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:3:20:3:41 | require ... arser') |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:4:18:4:36 | require('mongoose') |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:6:1:6:51 | Mongoos ... able1') |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:8:13:8:21 | Express() |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:9:1:9:26 | app.use ... json()) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:9:9:9:25 | BodyParser.json() |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:11:18:17:2 | Mongoos ... ring\\n}) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:19:1:132:2 | app.pos ... / OK\\n}) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:24:5:24:31 | Documen ... query]) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:27:5:27:25 | Documen ... (query) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:30:5:30:30 | Documen ... (query) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:33:5:33:29 | Documen ... (query) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:36:5:36:36 | Documen ...  query) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:39:5:39:24 | Document.find(query) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:42:5:42:27 | Documen ... (query) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:45:5:45:36 | Documen ... (query) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:48:5:48:36 | Documen ... (query) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:51:5:51:36 | Documen ... (query) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:54:5:54:30 | Documen ... (query) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:57:5:57:26 | Documen ... (query) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:60:5:60:30 | Documen ... (query) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:2:63:26 | Documen ... (query) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:63:2:63:34 | Documen ... then(X) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:65:2:65:51 | Documen ... on(){}) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:67:2:68:27 | new Mon ... on(){}) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:71:5:71:25 | Documen ... (query) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:71:5:72:21 | Documen ... (query) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:71:5:73:13 | Documen ... (query) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:71:5:74:12 | Documen ... (query) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:71:5:75:21 | Documen ...  query) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:71:5:76:17 | Documen ... (query) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:71:5:77:15 | Documen ... (query) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:71:5:78:9 | Documen ... .exec() |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:2:81:29 | Mongoos ... tion(X) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:81:2:81:42 | Mongoos ... (query) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:2:82:29 | Mongoos ... tion(X) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:2:82:38 | Mongoos ... odel(Y) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:82:2:82:51 | Mongoos ... (query) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:83:2:83:29 | Mongoos ... tion(X) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:83:2:83:52 | Mongoos ... (query) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:2:85:52 | Documen ... query)) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:85:36:85:51 | res.count(query) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:2:86:52 | Documen ... query)) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:86:36:86:51 | err.count(query) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:2:87:20 | Document.findOne(X) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:2:87:57 | Documen ... query)) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:87:41:87:56 | res.count(query) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:2:88:20 | Document.findOne(X) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:2:88:57 | Documen ... query)) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:88:41:88:56 | err.count(query) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:2:89:20 | Document.findOne(X) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:2:89:52 | Documen ... query)) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:89:36:89:51 | res.count(query) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:2:90:20 | Document.findOne(X) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:2:90:55 | Documen ... query)) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:90:39:90:54 | err.count(query) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:2:92:52 | Documen ... query)) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:92:33:92:51 | res[i].count(query) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:2:93:49 | Documen ... query)) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:93:33:93:48 | err.count(query) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:2:94:17 | Document.find(X) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:2:94:57 | Documen ... query)) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:94:38:94:56 | res[i].count(query) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:2:95:17 | Document.find(X) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:2:95:54 | Documen ... query)) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:95:38:95:53 | err.count(query) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:2:96:17 | Document.find(X) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:2:96:52 | Documen ... query)) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:96:33:96:51 | res[i].count(query) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:2:97:17 | Document.find(X) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:2:97:52 | Documen ... query)) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:97:36:97:51 | err.count(query) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:2:99:50 | Documen ... query)) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:99:34:99:49 | res.count(query) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:113:2:113:53 | Documen ... () { }) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:116:2:116:26 | Documen ... y(cond) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:117:2:117:25 | Documen ... e(cond) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:118:2:118:25 | Documen ... h(cond) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:119:2:119:22 | Documen ... e(cond) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:120:2:120:29 | Documen ... ond, Y) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:121:2:121:20 | Document.find(cond) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:122:2:122:23 | Documen ... e(cond) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:123:2:123:22 | Documen ... yId(id) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:124:2:124:32 | Documen ... e(cond) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:125:2:125:32 | Documen ... e(cond) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:126:2:126:35 | Documen ... ond, Y) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:127:2:127:25 | Documen ... ond, Y) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:128:2:128:29 | Documen ... ond, Y) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:129:2:129:28 | Documen ... ond, Y) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:130:2:130:27 | Documen ... : id }) |
| autogenerated/NosqlAndSqlInjection/untyped/mongoose.js:131:2:131:36 | Documen ... id } }) |
| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:2:17:2:34 | require('express') |
| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:3:20:3:41 | require ... arser') |
| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:4:18:4:36 | require('mongoose') |
| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:6:1:6:51 | Mongoos ... able1') |
| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:8:13:8:21 | Express() |
| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:10:18:16:2 | Mongoos ... ring\\n}) |
| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:18:1:24:2 | app.get ... ry);\\n}) |
| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:20:19:20:44 | JSON.pa ... y.data) |
| autogenerated/NosqlAndSqlInjection/untyped/mongooseJsonParse.js:23:5:23:24 | Document.find(query) |
| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:24:3:61 | mongoos ... hema()) |
| autogenerated/NosqlAndSqlInjection/untyped/mongooseModel.js:3:50:3:60 | getSchema() |
| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:5:11:5:19 | express() |
| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:7:1:7:26 | app.use ... json()) |
| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:7:9:7:25 | bodyParser.json() |
| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:9:1:14:2 | app.pos ... / OK\\n}) |
| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:10:11:10:32 | JSON.pa ... body.x) |
| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:11:3:11:25 | MyModel ... d: v }) |
| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:12:3:12:35 | MyModel ... y.id }) |
| autogenerated/NosqlAndSqlInjection/untyped/mongooseModelClient.js:13:3:13:40 | MyModel ... id}` }) |
| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:1:13:1:30 | require("express") |
| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:1:13:1:32 | require("express")() |
| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:2:15:2:30 | require('mysql') |
| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:3:14:3:42 | mysql.c ... nfig()) |
| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:3:31:3:41 | getConfig() |
| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:5:1:22:2 | app.get ...  });\\n}) |
| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:7:5:12:6 | pool.ge ... \\n    }) |
| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:8:9:11:47 | connect ... ds) {}) |
| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:13:5:17:6 | pool.ge ... \\n    }) |
| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:14:9:16:47 | connect ... ds) {}) |
| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:18:5:21:6 | pool.ge ... \\n    }) |
| autogenerated/NosqlAndSqlInjection/untyped/mysql.js:19:9:20:48 | connect ... ds) {}) |
| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:8:5:8:22 | this.db.one(taint) |
| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:9:5:9:13 | res.end() |
| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:1:13:18 | require('express') |
| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:1:13:20 | require('express')() |
| autogenerated/NosqlAndSqlInjection/untyped/pg-promise-types.ts:13:1:13:77 | require ... , res)) |
| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:1:13:1:33 | require ... omise') |
| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:1:13:1:35 | require ... ise')() |
| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:1:3:18 | require('express') |
| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:1:3:20 | require('express')() |
| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:3:1:66:2 | require ...   );\\n}) |
| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:4:14:4:53 | pgp(pro ... RING']) |
| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:9:3:9:15 | db.any(query) |
| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:10:3:10:16 | db.many(query) |
| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:11:3:11:22 | db.manyOrNone(query) |
| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:12:3:12:15 | db.map(query) |
| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:13:3:13:17 | db.multi(query) |
| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:14:3:14:23 | db.mult ... (query) |
| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:15:3:15:16 | db.none(query) |
| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:16:3:16:15 | db.one(query) |
| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:17:3:17:21 | db.oneOrNone(query) |
| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:18:3:18:17 | db.query(query) |
| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:19:3:19:18 | db.result(query) |
| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:21:3:23:4 | db.one( ... OK\\n  }) |
| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:24:3:27:4 | db.one( ... OK\\n  }) |
| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:28:3:31:4 | db.one( ... er\\n  }) |
| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:32:3:35:4 | db.one( ... OK\\n  }) |
| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:36:3:43:4 | db.one( ...  ]\\n  }) |
| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:44:3:50:4 | db.one( ...  }\\n  }) |
| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:51:3:58:4 | db.one( ...  }\\n  }) |
| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:59:3:61:4 | db.task ... OK\\n  }) |
| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:60:14:60:25 | t.one(query) |
| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:62:3:65:3 | db.task ...  OK\\n  ) |
| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:63:17:63:28 | t.one(query) |
| autogenerated/NosqlAndSqlInjection/untyped/pg-promise.js:64:10:64:21 | t.one(query) |
| autogenerated/NosqlAndSqlInjection/untyped/redis.js:2:15:2:30 | require("redis") |
| autogenerated/NosqlAndSqlInjection/untyped/redis.js:3:16:3:35 | redis.createClient() |
| autogenerated/NosqlAndSqlInjection/untyped/redis.js:5:17:5:34 | require('express') |
| autogenerated/NosqlAndSqlInjection/untyped/redis.js:6:13:6:21 | Express() |
| autogenerated/NosqlAndSqlInjection/untyped/redis.js:7:1:7:38 | app.use ... json()) |
| autogenerated/NosqlAndSqlInjection/untyped/redis.js:7:9:7:30 | require ... arser') |
| autogenerated/NosqlAndSqlInjection/untyped/redis.js:7:9:7:37 | require ... .json() |
| autogenerated/NosqlAndSqlInjection/untyped/redis.js:9:1:33:2 | app.pos ... T OK\\n}) |
| autogenerated/NosqlAndSqlInjection/untyped/redis.js:10:5:10:37 | client. ... value") |
| autogenerated/NosqlAndSqlInjection/untyped/redis.js:14:9:14:32 | client. ... value") |
| autogenerated/NosqlAndSqlInjection/untyped/redis.js:15:9:15:36 | client. ... alue"]) |
| autogenerated/NosqlAndSqlInjection/untyped/redis.js:18:5:18:28 | client. ... value") |
| autogenerated/NosqlAndSqlInjection/untyped/redis.js:19:5:19:56 | client. ... alue2") |
| autogenerated/NosqlAndSqlInjection/untyped/redis.js:22:5:23:16 | client\\n ... multi() |
| autogenerated/NosqlAndSqlInjection/untyped/redis.js:22:5:24:33 | client\\n ... value") |
| autogenerated/NosqlAndSqlInjection/untyped/redis.js:22:5:25:26 | client\\n ... value") |
| autogenerated/NosqlAndSqlInjection/untyped/redis.js:22:5:26:17 | client\\n ... et(key) |
| autogenerated/NosqlAndSqlInjection/untyped/redis.js:22:5:27:42 | client\\n ... s) { }) |
| autogenerated/NosqlAndSqlInjection/untyped/redis.js:29:5:31:6 | client. ... \\n    }) |
| autogenerated/NosqlAndSqlInjection/untyped/redis.js:30:9:30:35 | newClie ... value") |
| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:5:32:22 | client.duplicate() |
| autogenerated/NosqlAndSqlInjection/untyped/redis.js:32:5:32:40 | client. ... value") |
| autogenerated/NosqlAndSqlInjection/untyped/redis.js:37:1:53:2 | app.pos ... / OK\\n}) |
| autogenerated/NosqlAndSqlInjection/untyped/redis.js:39:5:39:28 | client. ... value") |
| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:22:41:42 | promisi ... nt.set) |
| autogenerated/NosqlAndSqlInjection/untyped/redis.js:41:22:41:55 | promisi ... client) |
| autogenerated/NosqlAndSqlInjection/untyped/redis.js:43:18:43:39 | setAsyn ... value") |
| autogenerated/NosqlAndSqlInjection/untyped/redis.js:45:23:45:43 | promisi ... nt.set) |
| autogenerated/NosqlAndSqlInjection/untyped/redis.js:46:18:46:46 | client. ... value") |
| autogenerated/NosqlAndSqlInjection/untyped/redis.js:48:24:48:42 | promisify(() => {}) |
| autogenerated/NosqlAndSqlInjection/untyped/redis.js:49:18:49:47 | client. ... value") |
| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:23:51:46 | promisi ... foobar) |
| autogenerated/NosqlAndSqlInjection/untyped/redis.js:51:23:51:59 | promisi ... client) |
| autogenerated/NosqlAndSqlInjection/untyped/redis.js:52:18:52:40 | unrelat ... value") |
| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:4:15:4:32 | require('express') |
| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:5:15:5:32 | require('sqlite3') |
| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:5:15:5:42 | require ... rbose() |
| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:8:10:8:29 | require('socket.io') |
| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:8:10:8:31 | require ... .io')() |
| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:9:1:13:2 | io.on(' ...  });\\n}) |
| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:10:3:12:4 | socket. ... );\\n  }) |
| autogenerated/NosqlAndSqlInjection/untyped/socketio.js:11:5:11:54 | db.run( ... ndle}`) |
| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:1:15:1:32 | require('express') |
| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:2:13:2:28 | require('mssql') |
| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:4:11:4:19 | express() |
| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:5:1:10:2 | app.get ... '");\\n}) |
| autogenerated/NosqlAndSqlInjection/untyped/tst2.js:9:3:9:85 | new sql ...  + "'") |
| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:3:12:3:24 | require('pg') |
| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:9:3:11:4 | pool.qu ... ts\\n  }) |
| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:16:3:18:4 | pool.qu ... ts\\n  }) |
| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:1:21:18 | require('express') |
| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:1:21:20 | require('express')() |
| autogenerated/NosqlAndSqlInjection/untyped/tst3.js:21:1:21:41 | require ... andler) |
| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:3:15:3:32 | require('sqlite3') |
| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:3:15:3:42 | require ... rbose() |
| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:1:6:36 | angular ... oute']) |
| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:6:1:9:2 | angular ... "');\\n}) |
| autogenerated/NosqlAndSqlInjection/untyped/tst4.js:8:3:8:67 | db.get( ...  + '"') |
| autogenerated/NosqlAndSqlInjection/untyped/tst.js:4:15:4:32 | require('express') |
| autogenerated/NosqlAndSqlInjection/untyped/tst.js:5:15:5:32 | require('sqlite3') |
| autogenerated/NosqlAndSqlInjection/untyped/tst.js:5:15:5:42 | require ... rbose() |
| autogenerated/NosqlAndSqlInjection/untyped/tst.js:8:11:8:19 | express() |
| autogenerated/NosqlAndSqlInjection/untyped/tst.js:9:1:11:2 | app.get ... "');\\n}) |
| autogenerated/NosqlAndSqlInjection/untyped/tst.js:10:3:10:65 | db.get( ...  + '"') |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/child_process-test.js:1:10:1:33 | require ... ocess") |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/child_process-test.js:2:12:2:26 | require('http') |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/child_process-test.js:3:11:3:24 | require('url') |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/child_process-test.js:5:14:64:2 | http.cr ... Y] \\n\\n}) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/child_process-test.js:6:15:6:38 | url.par ... , true) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/child_process-test.js:8:5:8:18 | cp.exec("foo") |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/child_process-test.js:9:5:9:22 | cp.execSync("foo") |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/child_process-test.js:10:5:10:22 | cp.execFile("foo") |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/child_process-test.js:11:5:11:26 | cp.exec ... ("foo") |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/child_process-test.js:12:5:12:19 | cp.spawn("foo") |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/child_process-test.js:13:5:13:23 | cp.spawnSync("foo") |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/child_process-test.js:14:5:14:18 | cp.fork("foo") |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/child_process-test.js:17:5:17:16 | cp.exec(cmd) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/child_process-test.js:18:5:18:20 | cp.execSync(cmd) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/child_process-test.js:19:5:19:20 | cp.execFile(cmd) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/child_process-test.js:20:5:20:24 | cp.execFileSync(cmd) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/child_process-test.js:21:5:21:17 | cp.spawn(cmd) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/child_process-test.js:22:5:22:21 | cp.spawnSync(cmd) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/child_process-test.js:23:5:23:16 | cp.fork(cmd) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/child_process-test.js:25:5:25:32 | cp.exec ...  "bar") |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/child_process-test.js:28:5:28:32 | cp.exec ... : cmd}) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/child_process-test.js:29:5:29:38 | cp.exec ...  cmd}}) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/child_process-test.js:30:5:30:30 | cp.exec ... : cmd}) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/child_process-test.js:31:5:31:30 | cp.exec ... : cmd}) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/child_process-test.js:32:5:32:30 | cp.exec ... : cmd}) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/child_process-test.js:39:5:39:31 | cp.spaw ...  cmd ]) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/child_process-test.js:44:5:44:34 | cp.exec ... , args) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/child_process-test.js:54:5:54:39 | cp.exec ... , args) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/child_process-test.js:56:5:56:59 | cp.spaw ...  cmd])) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/child_process-test.js:56:25:56:58 | ['/C',  ... , cmd]) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/child_process-test.js:57:5:57:50 | cp.spaw ... t(cmd)) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/child_process-test.js:57:25:57:49 | ['/C',  ... at(cmd) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/child_process-test.js:60:5:60:26 | myArgs. ...  + "c") |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/child_process-test.js:61:5:61:20 | myArgs.push(cmd) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/child_process-test.js:62:5:62:39 | cp.exec ... , args) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/child_process-test.js:67:3:67:21 | cp.spawn(cmd, args) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/child_process-test.js:70:12:70:26 | require("util") |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/child_process-test.js:72:1:76:2 | http.cr ... T OK\\n}) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/child_process-test.js:73:15:73:38 | url.par ... , true) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/child_process-test.js:75:5:75:27 | util.pr ... p.exec) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/child_process-test.js:75:5:75:32 | util.pr ... c)(cmd) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/child_process-test.js:79:26:79:54 | require ... erver') |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/child_process-test.js:82:9:86:10 | app.use ...      }) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/child_process-test.js:83:11:83:37 | cp.exec ... leName) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/child_process-test.js:85:11:85:31 | require ... b-lib") |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/child_process-test.js:85:11:85:55 | require ... leName) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/child_process-test.js:93:1:95:2 | router. ... T OK\\n}) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/child_process-test.js:94:3:94:36 | cp.exec ... s.host) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/exec-sh2.js:1:12:1:35 | require ... ocess') |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/exec-sh2.js:2:12:2:26 | require('http') |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/exec-sh2.js:3:11:3:24 | require('url') |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/exec-sh2.js:10:12:10:57 | cp.spaw ... ptions) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/exec-sh2.js:13:1:16:2 | http.cr ... md);\\n}) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/exec-sh2.js:14:15:14:38 | url.par ... , true) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/exec-sh.js:1:12:1:35 | require ... ocess') |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/exec-sh.js:2:12:2:26 | require('http') |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/exec-sh.js:3:11:3:24 | require('url') |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/exec-sh.js:15:12:15:61 | cp.spaw ... ptions) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/exec-sh.js:18:1:21:2 | http.cr ... md);\\n}) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/exec-sh.js:19:15:19:38 | url.par ... , true) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/execSeries.js:1:12:1:35 | require ... ocess') |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/execSeries.js:8:9:8:33 | process ... terate) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/execSeries.js:14:36:14:48 | exec(command) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/execSeries.js:17:1:17:15 | require('http') |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/execSeries.js:17:1:20:2 | require ... d]);\\n}) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/execSeries.js:18:13:18:26 | require('url') |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/execSeries.js:18:13:18:47 | require ... , true) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/form-parsers.js:1:15:1:32 | require('express') |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/form-parsers.js:2:15:2:31 | require('multer') |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/form-parsers.js:3:14:3:41 | multer( ... ds/' }) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/form-parsers.js:5:11:5:19 | express() |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/form-parsers.js:6:12:6:35 | require ... ocess") |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/form-parsers.js:8:1:10:2 | app.pos ... T OK\\n}) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/form-parsers.js:8:22:8:44 | upload. ... vatar') |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/form-parsers.js:9:3:9:40 | exec("t ... alname) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/form-parsers.js:12:1:16:2 | app.pos ...   })\\n}) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/form-parsers.js:12:28:12:53 | upload. ... s', 12) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/form-parsers.js:13:3:15:4 | req.fil ... OK\\n  }) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/form-parsers.js:14:5:14:38 | exec("t ... alname) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/form-parsers.js:19:12:19:26 | require('http') |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/form-parsers.js:20:14:20:30 | require('busboy') |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/form-parsers.js:22:1:28:2 | http.cr ... oy);\\n}) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/form-parsers.js:22:1:28:15 | http.cr ... n(8000) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/form-parsers.js:24:3:26:4 | busboy. ... OK\\n  }) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/form-parsers.js:25:5:25:29 | exec("t ... lename) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/form-parsers.js:27:3:27:18 | req.pipe(busboy) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/form-parsers.js:31:20:31:40 | require ... dable') |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/form-parsers.js:32:1:43:2 | app.pos ...  });\\n}) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/form-parsers.js:33:14:33:44 | formida ... true }) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/form-parsers.js:35:3:37:4 | form.pa ... OK\\n  }) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/form-parsers.js:36:5:36:32 | exec("t ... s.name) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/form-parsers.js:40:3:42:4 | form2.p ... OK\\n  }) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/form-parsers.js:41:5:41:32 | exec("t ... s.name) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/form-parsers.js:45:18:45:38 | require ... party') |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/form-parsers.js:46:12:46:26 | require('http') |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/form-parsers.js:48:1:63:2 | http.cr ... q);\\n\\n}) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/form-parsers.js:48:1:63:15 | http.cr ... n(8080) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/form-parsers.js:52:3:54:4 | form.pa ... OK\\n  }) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/form-parsers.js:53:5:53:32 | exec("t ... s.name) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/form-parsers.js:58:3:60:4 | form2.o ... OK\\n  }) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/form-parsers.js:59:5:59:34 | exec("t ... lename) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/form-parsers.js:61:3:61:18 | form2.parse(req) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/other.js:1:12:1:26 | require("http") |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/other.js:2:11:2:24 | require("url") |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/other.js:4:14:35:2 | http.cr ... T OK\\n}) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/other.js:5:15:5:38 | url.par ... , true) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/other.js:7:5:7:26 | require ... spawn") |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/other.js:7:5:7:36 | require ... nc(cmd) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/other.js:8:5:8:20 | require("execa") |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/other.js:8:5:8:31 | require ... ll(cmd) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/other.js:9:5:9:20 | require("execa") |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/other.js:9:5:9:35 | require ... nc(cmd) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/other.js:10:5:10:20 | require("execa") |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/other.js:10:5:10:32 | require ... ut(cmd) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/other.js:11:5:11:20 | require("execa") |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/other.js:11:5:11:32 | require ... rr(cmd) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/other.js:12:5:12:20 | require("execa") |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/other.js:12:5:12:30 | require ... nc(cmd) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/other.js:14:5:14:26 | require ... spawn") |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/other.js:14:5:14:31 | require ... ")(cmd) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/other.js:15:5:15:32 | require ... async") |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/other.js:15:5:15:37 | require ... ")(cmd) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/other.js:16:5:16:19 | require("exec") |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/other.js:16:5:16:24 | require("exec")(cmd) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/other.js:17:5:17:25 | require ... async") |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/other.js:17:5:17:30 | require ... ")(cmd) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/other.js:18:5:18:20 | require("execa") |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/other.js:18:5:18:25 | require ... ")(cmd) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/other.js:19:5:19:26 | require ... -exec") |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/other.js:19:5:19:39 | require ... t, cmd) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/other.js:21:18:21:32 | require("ssh2") |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/other.js:22:5:22:24 | new ssh2().exec(cmd) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/other.js:23:5:23:31 | new ssh ... ec(cmd) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/other.js:25:24:25:46 | require ... reams") |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/other.js:26:5:26:37 | new SSH ... e, cmd) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/other.js:28:5:28:20 | require("execa") |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/other.js:28:5:28:30 | require ... de(cmd) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/other.js:30:5:30:31 | require ... child") |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/other.js:30:5:30:36 | require ... ")(cmd) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/other.js:32:20:32:36 | require("opener") |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/other.js:33:5:33:70 | opener( ... y.user) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/other.js:33:35:33:58 | url.par ... , true) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/other.js:34:5:34:49 | opener( ...  cmd }) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/third-party-command-injection.js:1:13:1:28 | require("https") |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/third-party-command-injection.js:2:10:2:33 | require ... ocess") |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/third-party-command-injection.js:4:1:8:1 | https.g ...    })\\n) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/third-party-command-injection.js:5:5:7:6 | res.on( ... \\n    }) |
| autogenerated/ShellCommandInjectionFromEnvironment/CommandInjection/third-party-command-injection.js:6:9:6:28 | cp.execSync(command) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:1:10:1:33 | require ... ocess") |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:4:2:4:22 | cp.exec ... s.argv) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:5:2:5:25 | cp.exec ... rgv[0]) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:6:2:6:37 | cp.exec ... rgv[0]) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:7:2:7:37 | cp.exec ... rgv[1]) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:8:2:8:37 | cp.exec ... rgv[2]) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:10:13:10:33 | process ... lice(2) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:11:2:11:21 | cp.execSync(args[0]) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:12:2:12:33 | cp.exec ... rgs[0]) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:14:18:14:30 | args.slice(1) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:15:2:15:26 | cp.exec ... rgs[0]) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:16:2:16:38 | cp.exec ... rgs[0]) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:19:2:19:18 | cp.execSync(arg0) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:20:2:20:30 | cp.exec ... + arg0) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:24:15:24:35 | process ... lice(2) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:25:17:25:56 | path.jo ... ex.js') |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:26:2:26:51 | cp.exec ... tion"`) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:27:2:27:58 | cp.exec ... tion"`) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:27:32:27:45 | args.join(' ') |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:30:1:30:51 | cp.exec ... ().foo) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:30:21:30:44 | require ... -args") |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:30:21:30:46 | require ... rgs")() |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:31:1:31:46 | cp.exec ... ().foo) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:31:21:31:39 | require("minimist") |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:31:21:31:41 | require ... ist")() |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:32:1:32:46 | cp.exec ... gv.foo) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:32:21:32:36 | require("yargs") |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:33:1:33:49 | cp.exec ... gv.foo) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:33:21:33:39 | require("optimist") |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:36:13:36:28 | require('yargs') |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:36:13:37:62 | require ... => { }) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:36:13:38:36 | require ... bar" }) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:41:2:41:26 | cp.exec ... + args) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:43:2:43:63 | cp.exec ... ().foo) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:43:22:43:37 | require("yargs") |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:43:22:43:50 | require ... ("foo") |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:43:22:43:58 | require ... parse() |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:51:6:51:21 | require('yargs') |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:51:6:52:26 | require ... o bar') |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:51:6:53:12 | require ... mmand() |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:55:2:55:26 | cp.exec ... + args) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:57:17:57:32 | require('yargs') |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:58:17:58:32 | require('yargs') |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:58:17:58:40 | require ... parse() |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:65:2:65:32 | cp.exec ... t1rest) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:66:2:66:32 | cp.exec ... t2rest) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:68:20:68:35 | require('yargs') |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:69:2:69:28 | cp.exec ... taint3) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:71:20:71:35 | require('yargs') |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:72:2:72:28 | cp.exec ... taint4) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:76:15:76:35 | process ... lice(2) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:78:17:78:35 | require("minimist") |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:79:2:79:40 | cp.exec ... v).foo) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:79:22:79:35 | minimist(argv) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:81:15:81:31 | require('subarg') |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:82:2:82:55 | cp.exec ... )).foo) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:82:22:82:50 | subarg( ... ice(2)) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:82:29:82:49 | process ... lice(2) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:84:20:84:42 | require ... arser') |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:85:2:85:60 | cp.exec ... )).foo) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:85:22:85:55 | yargsPa ... ice(2)) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:85:34:85:54 | process ... lice(2) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:88:14:88:37 | args.pa ... s.argv) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:89:2:89:31 | cp.exec ... gs.foo) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:91:14:91:27 | require('arg') |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:91:14:91:38 | require ... .spec}) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:92:2:92:31 | cp.exec ... gs.foo) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:96:29:96:47 | require('argparse') |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:100:2:100:56 | parser. ... bar' }) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:102:2:102:45 | cp.exec ... ().foo) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:102:22:102:40 | parser.parse_args() |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:106:26:106:53 | require ... -args') |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:107:18:107:51 | command ... itions) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:108:2:108:33 | cp.exec ... ns.foo) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:112:15:112:29 | require('meow') |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:114:14:114:52 | meow(`h ... lags}}) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:116:2:116:34 | cp.exec ... put[0]) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:120:17:120:35 | require('dashdash') |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:122:13:122:46 | dashdas ... tions}) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:124:2:124:30 | cp.exec ... ts.foo) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:126:15:126:55 | dashdas ... tions}) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:127:13:127:26 | parser.parse() |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:129:2:129:30 | cp.exec ... ts.foo) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:133:22:133:41 | require('commander') |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:134:2:134:25 | program ... 0.0.1') |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:136:2:136:46 | cp.exec ... zaType) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:136:22:136:35 | program.opts() |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:137:2:137:39 | cp.exec ... zaType) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:141:22:141:41 | require('commander') |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:143:2:143:25 | program ... 0.0.1') |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:145:2:145:46 | cp.exec ... zaType) |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:145:22:145:35 | program.opts() |
| autogenerated/ShellCommandInjectionFromEnvironment/IndirectCommandInjection/command-line-parameter-command-injection.js:146:2:146:39 | cp.exec ... zaType) |
| autogenerated/ShellCommandInjectionFromEnvironment/SecondOrderCommandInjection/second-order.js:1:17:1:34 | require("express") |
| autogenerated/ShellCommandInjectionFromEnvironment/SecondOrderCommandInjection/second-order.js:2:13:2:21 | express() |
| autogenerated/ShellCommandInjectionFromEnvironment/SecondOrderCommandInjection/second-order.js:3:22:3:45 | require ... ocess") |
| autogenerated/ShellCommandInjectionFromEnvironment/SecondOrderCommandInjection/second-order.js:5:1:47:2 | app.get ... / OK\\n}) |
| autogenerated/ShellCommandInjectionFromEnvironment/SecondOrderCommandInjection/second-order.js:7:3:7:40 | execFil ... emote]) |
| autogenerated/ShellCommandInjectionFromEnvironment/SecondOrderCommandInjection/second-order.js:9:3:9:36 | execFil ... emote]) |
| autogenerated/ShellCommandInjectionFromEnvironment/SecondOrderCommandInjection/second-order.js:15:3:15:25 | execFil ... myArgs) |
| autogenerated/ShellCommandInjectionFromEnvironment/SecondOrderCommandInjection/second-order.js:17:7:17:29 | remote. ... h("--") |
| autogenerated/ShellCommandInjectionFromEnvironment/SecondOrderCommandInjection/second-order.js:18:5:18:50 | execFil ... HEAD"]) |
| autogenerated/ShellCommandInjectionFromEnvironment/SecondOrderCommandInjection/second-order.js:20:5:20:50 | execFil ... HEAD"]) |
| autogenerated/ShellCommandInjectionFromEnvironment/SecondOrderCommandInjection/second-order.js:23:7:23:31 | remote. ... "git@") |
| autogenerated/ShellCommandInjectionFromEnvironment/SecondOrderCommandInjection/second-order.js:24:5:24:50 | execFil ... HEAD"]) |
| autogenerated/ShellCommandInjectionFromEnvironment/SecondOrderCommandInjection/second-order.js:26:5:26:50 | execFil ... HEAD"]) |
| autogenerated/ShellCommandInjectionFromEnvironment/SecondOrderCommandInjection/second-order.js:29:3:29:33 | execFil ... y.args) |
| autogenerated/ShellCommandInjectionFromEnvironment/SecondOrderCommandInjection/second-order.js:31:3:31:42 | execFil ... .args]) |
| autogenerated/ShellCommandInjectionFromEnvironment/SecondOrderCommandInjection/second-order.js:33:3:33:66 | execFil ... gs()])) |
| autogenerated/ShellCommandInjectionFromEnvironment/SecondOrderCommandInjection/second-order.js:33:19:33:65 | ["add", ... rgs()]) |
| autogenerated/ShellCommandInjectionFromEnvironment/SecondOrderCommandInjection/second-order.js:33:53:33:63 | otherargs() |
| autogenerated/ShellCommandInjectionFromEnvironment/SecondOrderCommandInjection/second-order.js:35:3:35:78 | execFil ... rArgs)) |
| autogenerated/ShellCommandInjectionFromEnvironment/SecondOrderCommandInjection/second-order.js:35:19:35:77 | ["ls-re ... erArgs) |
| autogenerated/ShellCommandInjectionFromEnvironment/SecondOrderCommandInjection/second-order.js:37:3:37:65 | execFil ... rable)) |
| autogenerated/ShellCommandInjectionFromEnvironment/SecondOrderCommandInjection/second-order.js:37:19:37:64 | ["add", ... erable) |
| autogenerated/ShellCommandInjectionFromEnvironment/SecondOrderCommandInjection/second-order.js:40:3:40:45 | execFil ... emote]) |
| autogenerated/ShellCommandInjectionFromEnvironment/SecondOrderCommandInjection/second-order.js:42:3:42:48 | execFil ... emote]) |
| autogenerated/ShellCommandInjectionFromEnvironment/SecondOrderCommandInjection/second-order.js:44:3:44:32 | execFil ... y.args) |
| autogenerated/ShellCommandInjectionFromEnvironment/SecondOrderCommandInjection/second-order.js:46:3:46:51 | execFil ... emote]) |
| autogenerated/ShellCommandInjectionFromEnvironment/SecondOrderCommandInjection/second-order.js:50:3:50:21 | execFile(cmd, args) |
| autogenerated/ShellCommandInjectionFromEnvironment/SecondOrderCommandInjection/second-order.js:53:1:53:74 | app.lis ... 000!")) |
| autogenerated/ShellCommandInjectionFromEnvironment/SecondOrderCommandInjection/second-order.js:53:24:53:73 | console ... 3000!") |
| autogenerated/ShellCommandInjectionFromEnvironment/ShellCommandInjectionFromEnvironment/tst_shell-command-injection-from-environment.js:1:10:1:33 | require ... ocess') |
| autogenerated/ShellCommandInjectionFromEnvironment/ShellCommandInjectionFromEnvironment/tst_shell-command-injection-from-environment.js:2:12:2:26 | require('path') |
| autogenerated/ShellCommandInjectionFromEnvironment/ShellCommandInjectionFromEnvironment/tst_shell-command-injection-from-environment.js:3:13:3:28 | require("execa") |
| autogenerated/ShellCommandInjectionFromEnvironment/ShellCommandInjectionFromEnvironment/tst_shell-command-injection-from-environment.js:5:2:5:62 | cp.exec ... emp")]) |
| autogenerated/ShellCommandInjectionFromEnvironment/ShellCommandInjectionFromEnvironment/tst_shell-command-injection-from-environment.js:5:33:5:60 | path.jo ... "temp") |
| autogenerated/ShellCommandInjectionFromEnvironment/ShellCommandInjectionFromEnvironment/tst_shell-command-injection-from-environment.js:6:2:6:54 | cp.exec ... temp")) |
| autogenerated/ShellCommandInjectionFromEnvironment/ShellCommandInjectionFromEnvironment/tst_shell-command-injection-from-environment.js:6:26:6:53 | path.jo ... "temp") |
| autogenerated/ShellCommandInjectionFromEnvironment/ShellCommandInjectionFromEnvironment/tst_shell-command-injection-from-environment.js:8:2:8:54 | execa.s ... temp")) |
| autogenerated/ShellCommandInjectionFromEnvironment/ShellCommandInjectionFromEnvironment/tst_shell-command-injection-from-environment.js:8:26:8:53 | path.jo ... "temp") |
| autogenerated/ShellCommandInjectionFromEnvironment/ShellCommandInjectionFromEnvironment/tst_shell-command-injection-from-environment.js:9:2:9:58 | execa.s ... temp")) |
| autogenerated/ShellCommandInjectionFromEnvironment/ShellCommandInjectionFromEnvironment/tst_shell-command-injection-from-environment.js:9:30:9:57 | path.jo ... "temp") |
| autogenerated/ShellCommandInjectionFromEnvironment/ShellCommandInjectionFromEnvironment/tst_shell-command-injection-from-environment.js:11:22:11:49 | path.jo ... "temp") |
| autogenerated/ShellCommandInjectionFromEnvironment/ShellCommandInjectionFromEnvironment/tst_shell-command-injection-from-environment.js:12:2:12:34 | execa.s ... + safe) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/isImported.js:3:12:3:35 | require ... ocess") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/isImported.js:6:2:6:26 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib2.js:1:10:1:33 | require ... ocess") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib2.js:4:2:4:26 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib2.js:8:2:8:26 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:1:10:1:33 | require ... ocess") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:4:2:4:26 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:6:2:6:26 | cp.exec ... [name]) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:7:2:7:24 | cp.exec ... , name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:11:2:11:26 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:15:2:15:26 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:20:2:20:26 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:27:2:27:26 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:31:23:31:42 | require("./lib2.js") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:35:3:35:27 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:38:3:38:27 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:41:3:41:27 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:43:3:43:33 | cp.exec ... Source) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:50:2:50:28 | require ... ocess") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:50:2:50:51 | require ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:55:2:55:14 | cp.exec(cmd1) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:59:3:59:14 | cp.exec(cmd) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:65:2:65:26 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:67:2:67:14 | cp.exec(name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:69:2:69:48 | cp.exec ... a end") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:71:2:71:32 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:73:2:73:32 | cp.exec ... + "\\"") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:75:2:75:30 | cp.exec ...  + "'") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:77:2:77:38 | cp.exec ...  + "'") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:79:2:79:29 | cp.exec ...  file") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:83:2:83:26 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:86:2:86:17 | args1.push(name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:87:2:87:25 | cp.exec ... n(" ")) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:87:10:87:24 | args1.join(" ") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:89:2:89:36 | cp.exec ... n(" ")) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:89:10:89:35 | ["rm -r ... in(" ") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:91:2:91:50 | cp.exec ... n(" ")) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:91:10:91:49 | ["rm -r ... in(" ") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:93:2:93:33 | cp.exec ...  name]) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:96:12:96:26 | require("util") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:98:2:98:40 | cp.exec ...  name)) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:98:10:98:39 | util.fo ... , name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:100:2:100:42 | cp.exec ...  name)) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:100:10:100:41 | util.fo ... , name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:102:2:102:51 | cp.exec ...  name)) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:102:10:102:50 | util.fo ... , name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:104:2:104:41 | cp.exec ...  name)) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:104:10:104:40 | util.fo ... , name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:106:2:106:57 | cp.exec ...  name)) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:106:10:106:56 | util.fo ... , name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:108:2:108:46 | cp.exec ...  name)) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:108:10:108:26 | require("printf") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:108:10:108:45 | require ... , name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:112:2:112:26 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:114:7:114:23 | isValidName(name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:117:2:117:26 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:121:2:121:26 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:123:7:123:22 | isSafeName(name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:126:2:126:26 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:131:3:131:27 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:135:3:135:27 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:138:3:138:27 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:144:2:144:26 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:152:2:152:23 | cp.spaw ... gs, cb) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:159:2:159:23 | cp.spaw ... gs, cb) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:163:2:167:2 | cp.spaw ... t' }\\n\\t) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:165:3:165:30 | ['/C',  ... (args2) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:171:2:171:27 | cp.exec ... ommand) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:173:2:173:24 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:178:24:178:50 | name.re ... '\\\\''") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:179:2:179:31 | cp.exec ... itized) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:181:21:181:46 | name.re ... "'\\''") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:182:2:182:28 | cp.exec ... broken) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:185:12:185:26 | require("path") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:187:2:187:26 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:189:7:189:22 | path.exist(name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:190:3:190:27 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:193:2:193:26 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:197:2:197:26 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:199:6:199:36 | /[^A-Za ... t(name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:200:3:200:27 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:202:3:202:27 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:207:2:207:26 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:209:6:209:37 | /^[A-Za ... t(name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:210:3:210:27 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:212:3:212:27 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:217:2:217:26 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:219:7:219:37 | /^([a-z ... t(name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:220:3:220:27 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:221:3:221:18 | process.exit(-1) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:224:2:224:26 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:228:2:228:26 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:231:3:231:23 | path.ac ... c(name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:236:2:236:26 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:240:6:240:33 | /[^A-Za ... test(s) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:241:13:241:36 | s.repla ... '\\\\''") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:242:7:242:32 | s.repla ... /g, '') |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:242:7:243:28 | s.repla ...  "\\\\'") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:249:2:249:26 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:253:2:253:29 | cp.exec ... leaned) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:256:10:256:22 | require("fs") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:258:2:258:26 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:260:7:260:37 | fs.exis ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:261:3:261:34 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:264:2:264:33 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:268:2:268:33 | cp.exec ... ersion) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:272:2:272:33 | cp.exec ... ersion) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:277:3:277:31 | cp.exec ... ts.bla) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:281:3:281:36 | cp.exec ... ts.bla) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:287:12:287:35 | result. ... /g, "") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:288:12:288:35 | result. ... /g, "") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:289:12:289:36 | result. ... /g, "") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:290:12:290:36 | result. ... /g, "") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:291:12:291:36 | result. ... /g, "") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:292:12:292:36 | result. ... /g, "") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:293:12:293:36 | result. ... /g, "") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:294:12:294:36 | result. ... /g, "") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:295:12:295:35 | result. ... /g, "") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:296:12:296:35 | result. ... /g, "") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:297:12:297:35 | result. ... /g, "") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:298:12:298:36 | result. ... /g, "") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:299:12:299:36 | result. ... /g, "") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:300:12:300:36 | result. ... /g, "") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:301:12:301:35 | result. ... /g, "") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:302:12:302:36 | result. ... /g, "") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:303:12:303:36 | result. ... /g, "") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:308:3:308:27 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:311:3:311:32 | cp.exec ... itized) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:315:2:315:26 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:318:3:318:27 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:320:3:320:27 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:326:2:326:13 | cp.exec(cmd) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:336:2:336:32 | cp.exec ... test")) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:340:2:340:27 | cp.exec ...  id(n)) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:345:3:345:24 | cp.exec ...  " + n) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:350:2:350:26 | cp.exec ... + safe) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:351:2:351:28 | cp.exec ... unsafe) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:354:1:358:2 | Object. ... ;\\n\\t}\\n}) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:356:10:356:40 | boundPr ... "safe") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:367:3:367:18 | cp.exec(command) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:406:2:406:26 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:409:2:409:31 | cp.exec ... itized) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:412:12:412:35 | require ... ocess") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:415:2:415:26 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:417:2:417:66 | cp.exec ...  => {}) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:418:2:418:45 | cp.spaw ...  true}) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:419:2:419:52 | cp.exec ...  true}) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:420:2:420:49 | cp.spaw ...  true}) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:424:2:424:40 | spawn(" ... WN_OPT) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:426:2:426:15 | arr.push(name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:427:2:427:28 | spawn(" ... WN_OPT) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:428:2:428:70 | spawn(" ... WN_OPT) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:433:6:433:16 | something() |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:434:3:434:21 | arr.push('convert') |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:435:11:435:25 | arr.push(first) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:436:10:436:23 | arr.push(last) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:440:17:440:40 | require ... ecute") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:442:2:442:28 | asyncEx ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:447:3:447:29 | asyncEx ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:453:1:470:1 | Object. ... \\t)\\n\\t)\\n) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:455:2:469:2 | Object. ... \\n\\t\\t)\\n\\t) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:457:3:457:25 | Object. ... yFuncs) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:457:3:468:3 | Object. ... \\t{}\\n\\t\\t) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:458:31:466:4 | Object. ... },\\n\\t\\t\\t) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:472:14:472:28 | require('path') |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:473:21:473:35 | require('util') |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:475:14:475:53 | promisi ... ).exec) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:475:24:475:47 | require ... ocess') |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:478:17:478:62 | path.jo ... ry -v') |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:479:12:479:20 | exec(cmd) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:485:2:485:20 | cp.exec(cmd + args) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:490:2:490:13 | cp.exec(cmd) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:495:7:495:30 | require ... ocess') |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:499:3:499:35 | MyThing ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:504:11:504:33 | require ... orted') |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:510:2:510:26 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:512:6:512:16 | isNaN(name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:513:3:513:27 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:515:3:515:27 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:518:6:518:26 | isNaN(p ... (name)) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:518:12:518:25 | parseInt(name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:519:3:519:27 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:521:3:521:27 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:524:6:524:17 | isNaN(+name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:525:3:525:27 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:527:3:527:27 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:530:6:530:30 | isNaN(p ... e, 10)) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:530:12:530:29 | parseInt(name, 10) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:531:3:531:27 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:533:3:533:27 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:536:6:536:20 | isNaN(name - 0) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:537:3:537:27 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:539:3:539:27 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:542:6:542:20 | isNaN(name \| 0) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:543:3:543:27 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/lib.js:545:3:545:27 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/other.js:1:10:1:33 | require ... ocess") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/other.js:4:2:4:26 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/subLib2/compiled-file.ts:1:10:1:33 | require ... ocess") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/subLib2/compiled-file.ts:4:5:4:29 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/subLib2/special-file.js:1:10:1:33 | require ... ocess") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/subLib2/special-file.js:4:2:4:26 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/subLib3/my-file.ts:1:10:1:33 | require ... ocess") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/subLib3/my-file.ts:4:2:4:26 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/subLib4/index.js:2:8:2:23 | require("./bla") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/subLib4/index.js:3:9:3:27 | require("./subsub") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/subLib4/subsub.js:1:12:1:35 | require ... ocess") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/subLib4/subsub.js:4:2:4:26 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/subLib/amd.js:2:1:6:2 | define( ...   };\\n}) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/subLib/amd.js:4:13:4:31 | require("./amdSub") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/subLib/amdSub.js:1:12:1:35 | require ... ocess") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/subLib/amdSub.js:4:2:4:26 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/subLib/index.js:1:10:1:33 | require ... ocess") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/subLib/index.js:4:2:4:26 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/subLib/index.js:8:2:8:26 | cp.exec ... + name) |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/subLib/index.js:11:22:11:40 | require("./amd.js") |
| autogenerated/ShellCommandInjectionFromEnvironment/UnsafeShellCommandConstruction/lib/subLib/index.js:14:5:14:40 | cp.spaw ...  true}) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:1:15:1:32 | require('express') |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:2:21:2:44 | require ... ocess') |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:7:10:7:22 | require('fs') |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:8:11:8:19 | express() |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:10:1:10:43 | exec("c ... ut) {}) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:12:1:14:2 | exec("c ... ut);\\n}) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:13:2:13:17 | console.log(out) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:16:1:16:29 | execSyn ... uinfo') |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:16:1:16:40 | execSyn ... tring() |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:18:1:18:26 | execSyn ... path}`) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:20:1:20:36 | execSyn ... wc -l') |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:22:1:22:38 | execSyn ... o/bar') |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:22:1:22:49 | execSyn ... tring() |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:24:1:24:35 | execSyn ... o/bar`) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:24:1:24:46 | execSyn ... tring() |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:26:1:26:58 | exec(`c ... t) { }) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:28:1:28:39 | execSyn ...  1000}) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:30:1:30:64 | exec('c ... t) { }) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:32:1:32:34 | execSyn ... path}`) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:34:1:34:54 | execSyn ... utf8'}) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:36:1:36:77 | execSyn ... utf8'}) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:38:1:38:43 | execSyn ... r/baz') |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:38:1:38:54 | execSyn ... tring() |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:40:1:40:40 | execSyn ... path}`) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:40:1:40:51 | execSyn ... tring() |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:42:1:42:47 | execSyn ... File}`) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:42:17:42:31 | files.join(' ') |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:44:1:44:34 | execSyn ... ' ')}`) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:44:17:44:31 | files.join(' ') |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:46:1:46:37 | exec("c ...  name") |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:48:1:48:41 | execSyn ... tool}`) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:51:9:51:31 | execSyn ... + file) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:51:9:51:42 | execSyn ... tring() |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:54:1:54:39 | execSyn ...  + "'") |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:59:1:62:2 | execFil ... ut);\\n}) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:61:3:61:21 | console.log(stdout) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:64:1:66:2 | execFil ... r); \\n}) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:65:3:65:21 | console.log(stderr) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:69:1:72:2 | execFil ... ut);\\n}) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:71:3:71:21 | console.log(stdout) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:74:1:74:60 | execFil ... utf8'}) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:76:1:76:39 | execFil ... xml' ]) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:79:1:79:46 | execFil ...   opts) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:82:1:82:90 | execFil ... String) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:84:1:84:115 | execFil ... ring'}) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:86:1:86:75 | execFil ... utf8'}) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:88:1:88:35 | execSyn ...  + foo) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:88:1:88:46 | execSyn ... tring() |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:90:1:90:50 | execFil ... th}` ]) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:92:1:92:46 | execFil ... th}` ]) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:94:1:94:43 | exec("c ... ut) {}) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:96:1:96:53 | exec("c ... (out)}) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:96:36:96:51 | console.log(out) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:98:1:98:55 | exec("c ... h(out)) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:98:35:98:54 | doSomethingWith(out) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:100:1:100:56 | execFil ... ptions) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:102:1:102:56 | exec("n ... h(out)) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:102:36:102:55 | doSomethingWith(out) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:104:1:104:31 | execFil ... cat` ]) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:106:1:106:44 | exec("c ... ut) {}) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:107:1:107:44 | exec("c ... ut) {}) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:108:1:108:44 | exec("c ... ut) {}) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:109:1:109:44 | exec("c ... ut) {}) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:111:1:111:51 | spawn(' ... it'] }) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:114:15:114:38 | spawn(' ... ename]) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:115:3:117:4 | cat.std ... );\\n  }) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:116:5:116:19 | res.write(data) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:118:3:118:39 | cat.std ... .end()) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:118:30:118:38 | res.end() |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:121:12:121:64 | exec("c ... (out)}) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:121:47:121:62 | console.log(out) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:123:15:123:67 | exec("c ... (out)}) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:123:50:123:65 | console.log(out) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:124:1:124:20 | console.log(notDead) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:127:14:127:66 | exec("c ... (out)}) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:127:49:127:64 | console.log(out) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:129:3:131:3 | someCal ... ss.\\n  ) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:130:2:130:54 | exec("c ... (out)}) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:130:37:130:52 | console.log(out) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:133:10:133:62 | exec("c ... (out)}) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:133:45:133:60 | console.log(out) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:136:17:138:2 | execSyn ... tf8'\\n}) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:140:1:140:36 | exec('/ ...  s) {}) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:142:1:142:12 | spawn("cat") |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:145:15:145:32 | require("shelljs") |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:146:1:146:61 | shelljs ... (out)}) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:146:44:146:59 | console.log(out) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:147:1:147:47 | shelljs ... utf8'}) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:148:1:148:81 | shelljs ... (out)}) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:148:64:148:79 | console.log(out) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:150:14:150:35 | require ... spawn') |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:151:1:151:48 | cspawn( ... tf8' }) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:152:1:152:82 | cspawn( ... (out)}) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:152:65:152:80 | console.log(out) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:153:1:153:60 | cspawn( ... (out)}) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:153:43:153:58 | console.log(out) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:154:1:154:26 | cspawn( ... /bar']) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:155:1:155:47 | cspawn( ... (out)}) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:155:30:155:45 | console.log(out) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:156:1:156:35 | cspawn( ... tf8' }) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:158:16:158:46 | cspawn. ... /bar']) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:159:16:159:68 | cspawn. ... tf8' }) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:161:15:161:29 | require('exec') |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:162:1:162:56 | execmod ... (out)}) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:162:39:162:54 | console.log(out) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:163:1:163:42 | execmod ... utf8'}) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:164:1:164:76 | execmod ... (out)}) |
| autogenerated/ShellCommandInjectionFromEnvironment/UselessUseOfCat/uselesscat.js:164:59:164:74 | console.log(out) |
| autogenerated/TaintedPath/TaintedPath-es6.js:6:14:11:2 | createS ... )));\\n}) |
| autogenerated/TaintedPath/TaintedPath-es6.js:7:14:7:33 | parse(req.url, true) |
| autogenerated/TaintedPath/TaintedPath-es6.js:10:3:10:47 | res.wri ... path))) |
| autogenerated/TaintedPath/TaintedPath-es6.js:10:13:10:46 | readFil ...  path)) |
| autogenerated/TaintedPath/TaintedPath-es6.js:10:26:10:45 | join("public", path) |
| autogenerated/TaintedPath/TaintedPath.js:1:10:1:22 | require('fs') |
| autogenerated/TaintedPath/TaintedPath.js:2:12:2:26 | require('http') |
| autogenerated/TaintedPath/TaintedPath.js:3:11:3:24 | require('url') |
| autogenerated/TaintedPath/TaintedPath.js:4:16:4:43 | require ... ename') |
| autogenerated/TaintedPath/TaintedPath.js:5:18:5:32 | require('path') |
| autogenerated/TaintedPath/TaintedPath.js:8:14:61:2 | http.cr ... )));\\n}) |
| autogenerated/TaintedPath/TaintedPath.js:9:14:9:37 | url.par ... , true) |
| autogenerated/TaintedPath/TaintedPath.js:12:3:12:34 | res.wri ... (path)) |
| autogenerated/TaintedPath/TaintedPath.js:12:13:12:33 | fs.read ... c(path) |
| autogenerated/TaintedPath/TaintedPath.js:15:3:15:50 | res.wri ...  path)) |
| autogenerated/TaintedPath/TaintedPath.js:15:13:15:49 | fs.read ... + path) |
| autogenerated/TaintedPath/TaintedPath.js:17:7:17:36 | path.st ... user/") |
| autogenerated/TaintedPath/TaintedPath.js:18:7:18:38 | res.wri ... (path)) |
| autogenerated/TaintedPath/TaintedPath.js:18:17:18:37 | fs.read ... c(path) |
| autogenerated/TaintedPath/TaintedPath.js:20:7:20:28 | path.in ... ecret") |
| autogenerated/TaintedPath/TaintedPath.js:21:7:21:38 | res.wri ... (path)) |
| autogenerated/TaintedPath/TaintedPath.js:21:17:21:37 | fs.read ... c(path) |
| autogenerated/TaintedPath/TaintedPath.js:23:7:23:25 | fs.existsSync(path) |
| autogenerated/TaintedPath/TaintedPath.js:24:7:24:38 | res.wri ... (path)) |
| autogenerated/TaintedPath/TaintedPath.js:24:17:24:37 | fs.read ... c(path) |
| autogenerated/TaintedPath/TaintedPath.js:27:5:27:36 | res.wri ... (path)) |
| autogenerated/TaintedPath/TaintedPath.js:27:15:27:35 | fs.read ... c(path) |
| autogenerated/TaintedPath/TaintedPath.js:30:5:30:36 | res.wri ... (path)) |
| autogenerated/TaintedPath/TaintedPath.js:30:15:30:35 | fs.read ... c(path) |
| autogenerated/TaintedPath/TaintedPath.js:32:51:32:71 | someOpa ... ition() |
| autogenerated/TaintedPath/TaintedPath.js:33:5:33:36 | res.wri ... (path)) |
| autogenerated/TaintedPath/TaintedPath.js:33:15:33:35 | fs.read ... c(path) |
| autogenerated/TaintedPath/TaintedPath.js:35:10:35:23 | sanitize(path) |
| autogenerated/TaintedPath/TaintedPath.js:36:3:36:34 | res.wri ... (path)) |
| autogenerated/TaintedPath/TaintedPath.js:36:13:36:33 | fs.read ... c(path) |
| autogenerated/TaintedPath/TaintedPath.js:38:10:38:33 | url.par ... , true) |
| autogenerated/TaintedPath/TaintedPath.js:40:3:40:55 | res.wri ... path))) |
| autogenerated/TaintedPath/TaintedPath.js:40:13:40:54 | fs.read ... (path)) |
| autogenerated/TaintedPath/TaintedPath.js:40:29:40:53 | pathMod ... e(path) |
| autogenerated/TaintedPath/TaintedPath.js:42:3:42:54 | res.wri ... path))) |
| autogenerated/TaintedPath/TaintedPath.js:42:13:42:53 | fs.read ... (path)) |
| autogenerated/TaintedPath/TaintedPath.js:42:29:42:52 | pathMod ... e(path) |
| autogenerated/TaintedPath/TaintedPath.js:44:3:44:54 | res.wri ... path))) |
| autogenerated/TaintedPath/TaintedPath.js:44:13:44:53 | fs.read ... (path)) |
| autogenerated/TaintedPath/TaintedPath.js:44:29:44:52 | pathMod ... e(path) |
| autogenerated/TaintedPath/TaintedPath.js:46:3:46:51 | res.wri ... path))) |
| autogenerated/TaintedPath/TaintedPath.js:46:13:46:50 | fs.read ... (path)) |
| autogenerated/TaintedPath/TaintedPath.js:46:29:46:49 | pathMod ... n(path) |
| autogenerated/TaintedPath/TaintedPath.js:48:3:48:60 | res.wri ... h, z))) |
| autogenerated/TaintedPath/TaintedPath.js:48:13:48:59 | fs.read ... th, z)) |
| autogenerated/TaintedPath/TaintedPath.js:48:29:48:58 | pathMod ... ath, z) |
| autogenerated/TaintedPath/TaintedPath.js:50:3:50:56 | res.wri ... path))) |
| autogenerated/TaintedPath/TaintedPath.js:50:13:50:55 | fs.read ... (path)) |
| autogenerated/TaintedPath/TaintedPath.js:50:29:50:54 | pathMod ... e(path) |
| autogenerated/TaintedPath/TaintedPath.js:52:3:52:58 | res.wri ... path))) |
| autogenerated/TaintedPath/TaintedPath.js:52:13:52:57 | fs.read ...  path)) |
| autogenerated/TaintedPath/TaintedPath.js:52:29:52:56 | pathMod ... , path) |
| autogenerated/TaintedPath/TaintedPath.js:54:3:54:58 | res.wri ... h, x))) |
| autogenerated/TaintedPath/TaintedPath.js:54:13:54:57 | fs.read ... th, x)) |
| autogenerated/TaintedPath/TaintedPath.js:54:29:54:56 | pathMod ... ath, x) |
| autogenerated/TaintedPath/TaintedPath.js:56:3:56:54 | res.wri ... path))) |
| autogenerated/TaintedPath/TaintedPath.js:56:13:56:53 | fs.read ... (path)) |
| autogenerated/TaintedPath/TaintedPath.js:56:29:56:52 | pathMod ... e(path) |
| autogenerated/TaintedPath/TaintedPath.js:58:3:58:63 | res.wri ... h, z))) |
| autogenerated/TaintedPath/TaintedPath.js:58:13:58:62 | fs.read ... th, z)) |
| autogenerated/TaintedPath/TaintedPath.js:58:29:58:61 | pathMod ... ath, z) |
| autogenerated/TaintedPath/TaintedPath.js:60:3:60:63 | res.wri ... path))) |
| autogenerated/TaintedPath/TaintedPath.js:60:13:60:62 | fs.read ... (path)) |
| autogenerated/TaintedPath/TaintedPath.js:60:29:60:61 | pathMod ... h(path) |
| autogenerated/TaintedPath/TaintedPath.js:63:1:63:27 | angular ... p', []) |
| autogenerated/TaintedPath/TaintedPath.js:63:1:68:6 | angular ... \\n    }) |
| autogenerated/TaintedPath/TaintedPath.js:63:1:73:6 | angular ... \\n    }) |
| autogenerated/TaintedPath/TaintedPath.js:71:26:71:45 | Cookie.get("unsafe") |
| autogenerated/TaintedPath/TaintedPath.js:75:14:80:2 | http.cr ... T OK\\n}) |
| autogenerated/TaintedPath/TaintedPath.js:77:5:77:78 | res.wri ... query)) |
| autogenerated/TaintedPath/TaintedPath.js:77:15:77:77 | fs.read ... .query) |
| autogenerated/TaintedPath/TaintedPath.js:77:31:77:55 | require ... ngify") |
| autogenerated/TaintedPath/TaintedPath.js:77:31:77:70 | require ... eq.url) |
| autogenerated/TaintedPath/TaintedPath.js:78:5:78:76 | res.wri ... query)) |
| autogenerated/TaintedPath/TaintedPath.js:78:15:78:75 | fs.read ... .query) |
| autogenerated/TaintedPath/TaintedPath.js:78:31:78:53 | require ... tring") |
| autogenerated/TaintedPath/TaintedPath.js:78:31:78:68 | require ... eq.url) |
| autogenerated/TaintedPath/TaintedPath.js:79:5:79:75 | res.wri ... query)) |
| autogenerated/TaintedPath/TaintedPath.js:79:15:79:74 | fs.read ... .query) |
| autogenerated/TaintedPath/TaintedPath.js:79:31:79:52 | require ... tring") |
| autogenerated/TaintedPath/TaintedPath.js:79:31:79:67 | require ... eq.url) |
| autogenerated/TaintedPath/TaintedPath.js:84:19:84:36 | require('express') |
| autogenerated/TaintedPath/TaintedPath.js:85:23:85:31 | express() |
| autogenerated/TaintedPath/TaintedPath.js:87:37:87:61 | res.ren ... ams[0]) |
| autogenerated/TaintedPath/TaintedPath.js:88:5:88:44 | applica ... _local) |
| autogenerated/TaintedPath/TaintedPath.js:90:26:90:43 | require("./views") |
| autogenerated/TaintedPath/TaintedPath.js:91:5:91:47 | applica ... ported) |
| autogenerated/TaintedPath/TaintedPath.js:95:1:97:2 | addEven ... ta);\\n}) |
| autogenerated/TaintedPath/TaintedPath.js:96:3:96:31 | Cookie. ... v.data) |
| autogenerated/TaintedPath/TaintedPath.js:99:14:109:2 | http.cr ...  );\\n\\n}) |
| autogenerated/TaintedPath/TaintedPath.js:100:13:100:36 | url.par ... , true) |
| autogenerated/TaintedPath/TaintedPath.js:102:2:102:50 | res.wri ... path))) |
| autogenerated/TaintedPath/TaintedPath.js:102:12:102:49 | fs.read ... (path)) |
| autogenerated/TaintedPath/TaintedPath.js:102:28:102:48 | fs.real ... c(path) |
| autogenerated/TaintedPath/TaintedPath.js:103:2:107:17 | fs.real ...       ) |
| autogenerated/TaintedPath/TaintedPath.js:105:19:105:54 | res.wri ... lpath)) |
| autogenerated/TaintedPath/TaintedPath.js:105:29:105:53 | fs.read ... alpath) |
| autogenerated/TaintedPath/TaintedPath.js:111:14:120:2 | http.cr ... ove.\\n}) |
| autogenerated/TaintedPath/TaintedPath.js:112:14:112:37 | url.par ... , true) |
| autogenerated/TaintedPath/TaintedPath.js:115:12:115:51 | path.re ... /g, '') |
| autogenerated/TaintedPath/TaintedPath.js:116:12:116:36 | path.re ... /g, '') |
| autogenerated/TaintedPath/TaintedPath.js:119:3:119:34 | res.wri ... (path)) |
| autogenerated/TaintedPath/TaintedPath.js:119:13:119:33 | fs.read ... c(path) |
| autogenerated/TaintedPath/TaintedPath.js:122:14:133:2 | http.cr ... ove.\\n}) |
| autogenerated/TaintedPath/TaintedPath.js:123:14:123:37 | url.par ... , true) |
| autogenerated/TaintedPath/TaintedPath.js:128:11:128:50 | path.re ... /g, '') |
| autogenerated/TaintedPath/TaintedPath.js:129:12:129:36 | path.re ... /g, '') |
| autogenerated/TaintedPath/TaintedPath.js:132:3:132:34 | res.wri ... (path)) |
| autogenerated/TaintedPath/TaintedPath.js:132:13:132:33 | fs.read ... c(path) |
| autogenerated/TaintedPath/TaintedPath.js:135:14:139:2 | http.cr ... T OK\\n}) |
| autogenerated/TaintedPath/TaintedPath.js:136:13:136:36 | url.par ... , true) |
| autogenerated/TaintedPath/TaintedPath.js:138:2:138:16 | require('send') |
| autogenerated/TaintedPath/TaintedPath.js:138:2:138:27 | require ... , path) |
| autogenerated/TaintedPath/TaintedPath.js:141:14:163:2 | http.cr ... OK \\n\\n}) |
| autogenerated/TaintedPath/TaintedPath.js:142:14:142:37 | url.par ... , true) |
| autogenerated/TaintedPath/TaintedPath.js:144:3:144:23 | fs.read ... c(path) |
| autogenerated/TaintedPath/TaintedPath.js:146:15:146:29 | path.split("/") |
| autogenerated/TaintedPath/TaintedPath.js:148:3:148:34 | fs.read ... n("/")) |
| autogenerated/TaintedPath/TaintedPath.js:148:19:148:33 | split.join("/") |
| autogenerated/TaintedPath/TaintedPath.js:150:3:150:51 | fs.read ... h - 1]) |
| autogenerated/TaintedPath/TaintedPath.js:152:3:152:27 | fs.read ... lit[x]) |
| autogenerated/TaintedPath/TaintedPath.js:153:3:153:36 | fs.read ... lit[x]) |
| autogenerated/TaintedPath/TaintedPath.js:155:19:155:38 | prefix.concat(split) |
| autogenerated/TaintedPath/TaintedPath.js:156:3:156:38 | fs.read ... n("/")) |
| autogenerated/TaintedPath/TaintedPath.js:156:19:156:37 | concatted.join("/") |
| autogenerated/TaintedPath/TaintedPath.js:158:20:158:39 | split.concat(prefix) |
| autogenerated/TaintedPath/TaintedPath.js:159:3:159:39 | fs.read ... n("/")) |
| autogenerated/TaintedPath/TaintedPath.js:159:19:159:38 | concatted2.join("/") |
| autogenerated/TaintedPath/TaintedPath.js:161:3:161:30 | fs.read ... .pop()) |
| autogenerated/TaintedPath/TaintedPath.js:161:19:161:29 | split.pop() |
| autogenerated/TaintedPath/TaintedPath.js:165:14:196:2 | http.cr ... ute)\\n}) |
| autogenerated/TaintedPath/TaintedPath.js:166:14:166:37 | url.par ... , true) |
| autogenerated/TaintedPath/TaintedPath.js:169:3:169:70 | res.wri ... , ''))) |
| autogenerated/TaintedPath/TaintedPath.js:169:13:169:69 | fs.read ... g, '')) |
| autogenerated/TaintedPath/TaintedPath.js:169:29:169:68 | path.re ... /g, '') |
| autogenerated/TaintedPath/TaintedPath.js:170:3:170:57 | res.wri ... , ''))) |
| autogenerated/TaintedPath/TaintedPath.js:170:13:170:56 | fs.read ... g, '')) |
| autogenerated/TaintedPath/TaintedPath.js:170:29:170:55 | path.re ... /g, '') |
| autogenerated/TaintedPath/TaintedPath.js:171:3:171:55 | res.wri ... , ''))) |
| autogenerated/TaintedPath/TaintedPath.js:171:13:171:54 | fs.read ... g, '')) |
| autogenerated/TaintedPath/TaintedPath.js:171:29:171:53 | path.re ... /g, '') |
| autogenerated/TaintedPath/TaintedPath.js:172:3:172:66 | res.wri ... , ''))) |
| autogenerated/TaintedPath/TaintedPath.js:172:13:172:65 | fs.read ... g, '')) |
| autogenerated/TaintedPath/TaintedPath.js:172:29:172:64 | path.re ... /g, '') |
| autogenerated/TaintedPath/TaintedPath.js:173:3:173:53 | res.wri ... , ''))) |
| autogenerated/TaintedPath/TaintedPath.js:173:13:173:52 | fs.read ... g, '')) |
| autogenerated/TaintedPath/TaintedPath.js:173:29:173:51 | path.re ... /g, '') |
| autogenerated/TaintedPath/TaintedPath.js:174:3:174:56 | res.wri ... , ''))) |
| autogenerated/TaintedPath/TaintedPath.js:174:13:174:55 | fs.read ... g, '')) |
| autogenerated/TaintedPath/TaintedPath.js:174:29:174:54 | path.re ... /g, '') |
| autogenerated/TaintedPath/TaintedPath.js:176:3:176:54 | res.wri ... , ''))) |
| autogenerated/TaintedPath/TaintedPath.js:176:13:176:53 | fs.read ... g, '')) |
| autogenerated/TaintedPath/TaintedPath.js:176:29:176:52 | path.re ... /g, '') |
| autogenerated/TaintedPath/TaintedPath.js:177:3:177:55 | res.wri ... , ''))) |
| autogenerated/TaintedPath/TaintedPath.js:177:13:177:54 | fs.read ... g, '')) |
| autogenerated/TaintedPath/TaintedPath.js:177:29:177:53 | path.re ... /g, '') |
| autogenerated/TaintedPath/TaintedPath.js:178:3:178:53 | res.wri ... , ''))) |
| autogenerated/TaintedPath/TaintedPath.js:178:13:178:52 | fs.read ... g, '')) |
| autogenerated/TaintedPath/TaintedPath.js:178:29:178:51 | path.re ... /g, '') |
| autogenerated/TaintedPath/TaintedPath.js:179:3:179:59 | res.wri ... , ''))) |
| autogenerated/TaintedPath/TaintedPath.js:179:13:179:58 | fs.read ... g, '')) |
| autogenerated/TaintedPath/TaintedPath.js:179:29:179:57 | path.re ... /g, '') |
| autogenerated/TaintedPath/TaintedPath.js:181:8:181:34 | pathMod ... e(path) |
| autogenerated/TaintedPath/TaintedPath.js:182:5:182:56 | res.wri ... , ''))) |
| autogenerated/TaintedPath/TaintedPath.js:182:15:182:55 | fs.read ... g, '')) |
| autogenerated/TaintedPath/TaintedPath.js:182:31:182:54 | path.re ... /g, '') |
| autogenerated/TaintedPath/TaintedPath.js:183:4:183:56 | res.wri ... , ''))) |
| autogenerated/TaintedPath/TaintedPath.js:183:14:183:55 | fs.read ... g, '')) |
| autogenerated/TaintedPath/TaintedPath.js:183:30:183:54 | path.re ... /g, '') |
| autogenerated/TaintedPath/TaintedPath.js:184:5:184:55 | res.wri ... , ''))) |
| autogenerated/TaintedPath/TaintedPath.js:184:15:184:54 | fs.read ... g, '')) |
| autogenerated/TaintedPath/TaintedPath.js:184:31:184:53 | path.re ... /g, '') |
| autogenerated/TaintedPath/TaintedPath.js:185:4:185:60 | res.wri ... , ''))) |
| autogenerated/TaintedPath/TaintedPath.js:185:14:185:59 | fs.read ... g, '')) |
| autogenerated/TaintedPath/TaintedPath.js:185:30:185:58 | path.re ... /g, '') |
| autogenerated/TaintedPath/TaintedPath.js:189:3:189:97 | res.wri ... , ''))) |
| autogenerated/TaintedPath/TaintedPath.js:189:13:189:96 | fs.read ... /, '')) |
| autogenerated/TaintedPath/TaintedPath.js:189:40:189:65 | pathMod ... e(path) |
| autogenerated/TaintedPath/TaintedPath.js:189:40:189:95 | pathMod ... +/, '') |
| autogenerated/TaintedPath/TaintedPath.js:190:3:190:96 | res.wri ... , ''))) |
| autogenerated/TaintedPath/TaintedPath.js:190:13:190:95 | fs.read ... /, '')) |
| autogenerated/TaintedPath/TaintedPath.js:190:40:190:65 | pathMod ... e(path) |
| autogenerated/TaintedPath/TaintedPath.js:190:40:190:94 | pathMod ... +/, '') |
| autogenerated/TaintedPath/TaintedPath.js:191:3:191:92 | res.wri ... , ''))) |
| autogenerated/TaintedPath/TaintedPath.js:191:13:191:91 | fs.read ... /, '')) |
| autogenerated/TaintedPath/TaintedPath.js:191:40:191:65 | pathMod ... e(path) |
| autogenerated/TaintedPath/TaintedPath.js:191:40:191:90 | pathMod ... +/, '') |
| autogenerated/TaintedPath/TaintedPath.js:192:3:192:92 | res.wri ... , ''))) |
| autogenerated/TaintedPath/TaintedPath.js:192:13:192:91 | fs.read ... /, '')) |
| autogenerated/TaintedPath/TaintedPath.js:192:40:192:65 | pathMod ... e(path) |
| autogenerated/TaintedPath/TaintedPath.js:192:40:192:90 | pathMod ... */, '') |
| autogenerated/TaintedPath/TaintedPath.js:194:3:194:75 | res.wri ... , ''))) |
| autogenerated/TaintedPath/TaintedPath.js:194:13:194:74 | fs.read ... /, '')) |
| autogenerated/TaintedPath/TaintedPath.js:194:40:194:73 | path.re ... +/, '') |
| autogenerated/TaintedPath/TaintedPath.js:195:3:195:86 | res.wri ... , ''))) |
| autogenerated/TaintedPath/TaintedPath.js:195:13:195:85 | fs.read ... /, '')) |
| autogenerated/TaintedPath/TaintedPath.js:195:29:195:54 | pathMod ... e(path) |
| autogenerated/TaintedPath/TaintedPath.js:195:29:195:84 | pathMod ... +/, '') |
| autogenerated/TaintedPath/TaintedPath.js:200:14:207:2 | http.cr ... T OK\\n}) |
| autogenerated/TaintedPath/TaintedPath.js:202:14:202:26 | require("qs") |
| autogenerated/TaintedPath/TaintedPath.js:203:3:203:51 | res.wri ... ).foo)) |
| autogenerated/TaintedPath/TaintedPath.js:203:13:203:50 | fs.read ... l).foo) |
| autogenerated/TaintedPath/TaintedPath.js:203:29:203:45 | qs.parse(req.url) |
| autogenerated/TaintedPath/TaintedPath.js:204:3:204:65 | res.wri ... ).foo)) |
| autogenerated/TaintedPath/TaintedPath.js:204:13:204:64 | fs.read ... )).foo) |
| autogenerated/TaintedPath/TaintedPath.js:204:29:204:59 | qs.pars ... q.url)) |
| autogenerated/TaintedPath/TaintedPath.js:204:38:204:58 | normali ... eq.url) |
| autogenerated/TaintedPath/TaintedPath.js:205:19:205:36 | require("parseqs") |
| autogenerated/TaintedPath/TaintedPath.js:206:3:206:57 | res.wri ... ).foo)) |
| autogenerated/TaintedPath/TaintedPath.js:206:13:206:56 | fs.read ... l).foo) |
| autogenerated/TaintedPath/TaintedPath.js:206:29:206:51 | parseqs ... eq.url) |
| autogenerated/TaintedPath/TaintedPath.js:209:12:209:35 | require ... ocess") |
| autogenerated/TaintedPath/TaintedPath.js:210:14:215:2 | http.cr ... T OK\\n}) |
| autogenerated/TaintedPath/TaintedPath.js:211:14:211:37 | url.par ... , true) |
| autogenerated/TaintedPath/TaintedPath.js:212:3:212:36 | cp.exec ...  path}) |
| autogenerated/TaintedPath/TaintedPath.js:213:3:213:50 | cp.exec ...  path}) |
| autogenerated/TaintedPath/TaintedPath.js:214:3:214:40 | cp.exec ...  path}) |
| autogenerated/TaintedPath/express.js:1:15:1:32 | require("express") |
| autogenerated/TaintedPath/express.js:2:16:2:44 | require ... pload") |
| autogenerated/TaintedPath/express.js:4:11:4:19 | express() |
| autogenerated/TaintedPath/express.js:5:1:5:21 | app.use ... load()) |
| autogenerated/TaintedPath/express.js:5:9:5:20 | fileUpload() |
| autogenerated/TaintedPath/express.js:7:1:9:2 | app.get ... ar);\\n}) |
| autogenerated/TaintedPath/express.js:8:3:8:33 | req.fil ... ry.bar) |
| autogenerated/TaintedPath/handlebars.js:1:17:1:34 | require('express') |
| autogenerated/TaintedPath/handlebars.js:2:12:2:32 | require ... ebars") |
| autogenerated/TaintedPath/handlebars.js:3:12:3:24 | require("fs") |
| autogenerated/TaintedPath/handlebars.js:5:13:5:21 | express() |
| autogenerated/TaintedPath/handlebars.js:10:5:12:6 | hb.regi ... \\n    }) |
| autogenerated/TaintedPath/handlebars.js:11:16:11:40 | fs.read ... lePath) |
| autogenerated/TaintedPath/handlebars.js:13:5:19:6 | hb.regi ... \\n    }) |
| autogenerated/TaintedPath/handlebars.js:14:16:15:33 | fs\\n     ... lePath) |
| autogenerated/TaintedPath/handlebars.js:14:16:16:22 | fs\\n     ... t("\\n") |
| autogenerated/TaintedPath/handlebars.js:14:16:17:39 | fs\\n     ... + line) |
| autogenerated/TaintedPath/handlebars.js:14:16:18:21 | fs\\n     ... n("\\n") |
| autogenerated/TaintedPath/handlebars.js:20:31:20:91 | hb.comp ... ath}}") |
| autogenerated/TaintedPath/handlebars.js:21:27:21:55 | hb.comp ... ame}}") |
| autogenerated/TaintedPath/handlebars.js:22:28:22:75 | hb.comp ... late")) |
| autogenerated/TaintedPath/handlebars.js:22:39:22:74 | fs.read ... plate") |
| autogenerated/TaintedPath/handlebars.js:23:26:23:111 | hb.comp ... ath}}") |
| autogenerated/TaintedPath/handlebars.js:28:1:30:2 | app.get ... ile)\\n}) |
| autogenerated/TaintedPath/handlebars.js:29:5:29:64 | res.sen ... ath })) |
| autogenerated/TaintedPath/handlebars.js:29:14:29:63 | data.co ... path }) |
| autogenerated/TaintedPath/handlebars.js:32:1:34:2 | app.get ... ile)\\n}) |
| autogenerated/TaintedPath/handlebars.js:33:5:33:60 | res.sen ... ame })) |
| autogenerated/TaintedPath/handlebars.js:33:14:33:59 | data.co ... name }) |
| autogenerated/TaintedPath/handlebars.js:36:1:38:2 | app.get ...  ok)\\n}) |
| autogenerated/TaintedPath/handlebars.js:37:5:37:61 | res.sen ... ame })) |
| autogenerated/TaintedPath/handlebars.js:37:14:37:60 | data.co ... name }) |
| autogenerated/TaintedPath/handlebars.js:40:1:45:2 | app.get ... }));\\n}) |
| autogenerated/TaintedPath/handlebars.js:41:5:44:7 | res.sen ...     })) |
| autogenerated/TaintedPath/handlebars.js:41:14:44:6 | data.co ... \\n    }) |
| autogenerated/TaintedPath/handlebars.js:47:1:52:2 | app.get ... }));\\n}) |
| autogenerated/TaintedPath/handlebars.js:48:5:51:7 | res.sen ...     })) |
| autogenerated/TaintedPath/handlebars.js:48:14:51:6 | data.co ... \\n    }) |
| autogenerated/TaintedPath/my-async-fs-module.js:1:12:1:24 | require('fs') |
| autogenerated/TaintedPath/my-async-fs-module.js:2:21:2:39 | require('bluebird') |
| autogenerated/TaintedPath/my-async-fs-module.js:11:18:14:6 | methods ... \\n}, {}) |
| autogenerated/TaintedPath/my-async-fs-module.js:12:17:12:37 | promisi ... ethod]) |
| autogenerated/TaintedPath/my-fs-module.js:3:10:3:22 | require("fs") |
| autogenerated/TaintedPath/my-fs-module.js:5:10:5:31 | require ... al-fs") |
| autogenerated/TaintedPath/normalizedPaths.js:1:10:1:22 | require('fs') |
| autogenerated/TaintedPath/normalizedPaths.js:2:15:2:32 | require('express') |
| autogenerated/TaintedPath/normalizedPaths.js:3:11:3:24 | require('url') |
| autogenerated/TaintedPath/normalizedPaths.js:4:16:4:43 | require ... ename') |
| autogenerated/TaintedPath/normalizedPaths.js:5:18:5:32 | require('path') |
| autogenerated/TaintedPath/normalizedPaths.js:8:11:8:19 | express() |
| autogenerated/TaintedPath/normalizedPaths.js:10:1:18:2 | app.get ... T OK\\n}) |
| autogenerated/TaintedPath/normalizedPaths.js:13:3:13:23 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:14:3:14:30 | fs.read ... + path) |
| autogenerated/TaintedPath/normalizedPaths.js:15:3:15:39 | fs.read ... .html') |
| autogenerated/TaintedPath/normalizedPaths.js:16:3:16:54 | fs.read ... html')) |
| autogenerated/TaintedPath/normalizedPaths.js:16:19:16:53 | pathMod ... .html') |
| autogenerated/TaintedPath/normalizedPaths.js:17:3:17:58 | fs.read ...  path)) |
| autogenerated/TaintedPath/normalizedPaths.js:17:19:17:57 | pathMod ... , path) |
| autogenerated/TaintedPath/normalizedPaths.js:20:1:28:2 | app.get ... T OK\\n}) |
| autogenerated/TaintedPath/normalizedPaths.js:21:14:21:49 | pathMod ... y.path) |
| autogenerated/TaintedPath/normalizedPaths.js:23:3:23:23 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:24:3:24:30 | fs.read ... + path) |
| autogenerated/TaintedPath/normalizedPaths.js:25:3:25:39 | fs.read ... .html') |
| autogenerated/TaintedPath/normalizedPaths.js:26:3:26:54 | fs.read ... html')) |
| autogenerated/TaintedPath/normalizedPaths.js:26:19:26:53 | pathMod ... .html') |
| autogenerated/TaintedPath/normalizedPaths.js:27:3:27:58 | fs.read ...  path)) |
| autogenerated/TaintedPath/normalizedPaths.js:27:19:27:57 | pathMod ... , path) |
| autogenerated/TaintedPath/normalizedPaths.js:30:1:51:2 | app.get ... / OK\\n}) |
| autogenerated/TaintedPath/normalizedPaths.js:31:14:31:49 | pathMod ... y.path) |
| autogenerated/TaintedPath/normalizedPaths.js:33:7:33:33 | pathMod ... e(path) |
| autogenerated/TaintedPath/normalizedPaths.js:36:3:36:23 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:38:8:38:27 | path.startsWith(".") |
| autogenerated/TaintedPath/normalizedPaths.js:39:5:39:25 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:41:5:41:25 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:43:8:43:28 | path.st ... h("..") |
| autogenerated/TaintedPath/normalizedPaths.js:44:5:44:25 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:46:8:46:29 | path.st ... ("../") |
| autogenerated/TaintedPath/normalizedPaths.js:47:5:47:25 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:49:8:49:45 | path.st ... le.sep) |
| autogenerated/TaintedPath/normalizedPaths.js:50:5:50:25 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:53:1:69:2 | app.get ... T OK\\n}) |
| autogenerated/TaintedPath/normalizedPaths.js:54:14:54:49 | pathMod ... y.path) |
| autogenerated/TaintedPath/normalizedPaths.js:56:7:56:27 | path.st ... h("..") |
| autogenerated/TaintedPath/normalizedPaths.js:59:3:59:23 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:61:3:61:30 | fs.read ... + path) |
| autogenerated/TaintedPath/normalizedPaths.js:63:3:63:39 | fs.read ... .html") |
| autogenerated/TaintedPath/normalizedPaths.js:65:8:65:34 | pathMod ... e(path) |
| autogenerated/TaintedPath/normalizedPaths.js:66:5:66:25 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:68:5:68:25 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:71:1:79:2 | app.get ... T OK\\n}) |
| autogenerated/TaintedPath/normalizedPaths.js:73:14:73:56 | pathMod ... y.path) |
| autogenerated/TaintedPath/normalizedPaths.js:75:8:75:28 | path.st ... h("..") |
| autogenerated/TaintedPath/normalizedPaths.js:76:5:76:25 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:78:6:78:26 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:81:1:91:2 | app.get ... ../'\\n}) |
| autogenerated/TaintedPath/normalizedPaths.js:84:8:84:34 | pathMod ... e(path) |
| autogenerated/TaintedPath/normalizedPaths.js:87:3:87:34 | res.wri ... (path)) |
| autogenerated/TaintedPath/normalizedPaths.js:87:13:87:33 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:89:7:89:39 | path.st ... r/www') |
| autogenerated/TaintedPath/normalizedPaths.js:90:5:90:36 | res.wri ... (path)) |
| autogenerated/TaintedPath/normalizedPaths.js:90:15:90:35 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:93:1:103:2 | app.get ... / OK\\n}) |
| autogenerated/TaintedPath/normalizedPaths.js:94:14:94:49 | pathMod ... y.path) |
| autogenerated/TaintedPath/normalizedPaths.js:96:8:96:34 | pathMod ... e(path) |
| autogenerated/TaintedPath/normalizedPaths.js:99:3:99:34 | res.wri ... (path)) |
| autogenerated/TaintedPath/normalizedPaths.js:99:13:99:33 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:101:7:101:39 | path.st ... r/www') |
| autogenerated/TaintedPath/normalizedPaths.js:102:5:102:36 | res.wri ... (path)) |
| autogenerated/TaintedPath/normalizedPaths.js:102:15:102:35 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:105:1:114:2 | app.get ... / OK\\n}) |
| autogenerated/TaintedPath/normalizedPaths.js:106:14:106:49 | pathMod ... y.path) |
| autogenerated/TaintedPath/normalizedPaths.js:109:7:109:39 | path.st ... r/www") |
| autogenerated/TaintedPath/normalizedPaths.js:110:5:110:25 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:113:5:113:25 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:116:1:127:2 | app.get ... / OK\\n}) |
| autogenerated/TaintedPath/normalizedPaths.js:117:14:117:44 | fs.real ... y.path) |
| autogenerated/TaintedPath/normalizedPaths.js:119:3:119:23 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:120:3:120:54 | fs.read ... html')) |
| autogenerated/TaintedPath/normalizedPaths.js:120:19:120:53 | pathMod ... .html') |
| autogenerated/TaintedPath/normalizedPaths.js:122:7:122:39 | path.st ... r/www") |
| autogenerated/TaintedPath/normalizedPaths.js:123:5:123:25 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:125:3:125:45 | fs.read ...  path)) |
| autogenerated/TaintedPath/normalizedPaths.js:125:19:125:44 | pathMod ... , path) |
| autogenerated/TaintedPath/normalizedPaths.js:126:3:126:58 | fs.read ...  path)) |
| autogenerated/TaintedPath/normalizedPaths.js:126:19:126:57 | pathMod ... , path) |
| autogenerated/TaintedPath/normalizedPaths.js:129:1:136:2 | app.get ... T OK\\n}) |
| autogenerated/TaintedPath/normalizedPaths.js:130:14:130:49 | pathMod ... y.path) |
| autogenerated/TaintedPath/normalizedPaths.js:132:8:132:28 | path.st ... h('..') |
| autogenerated/TaintedPath/normalizedPaths.js:133:5:133:25 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:135:5:135:25 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:138:1:145:2 | app.get ... T OK\\n}) |
| autogenerated/TaintedPath/normalizedPaths.js:139:14:139:62 | pathMod ... y.path) |
| autogenerated/TaintedPath/normalizedPaths.js:141:7:141:39 | path.st ... r/www') |
| autogenerated/TaintedPath/normalizedPaths.js:142:5:142:25 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:144:5:144:25 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:147:1:157:2 | app.get ... / OK\\n}) |
| autogenerated/TaintedPath/normalizedPaths.js:148:23:148:58 | pathMod ... y.path) |
| autogenerated/TaintedPath/normalizedPaths.js:150:8:150:28 | path.st ... h('..') |
| autogenerated/TaintedPath/normalizedPaths.js:151:5:151:25 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:153:5:153:25 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:155:8:155:26 | path.includes('..') |
| autogenerated/TaintedPath/normalizedPaths.js:156:5:156:25 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:159:1:171:2 | app.get ... T OK\\n}) |
| autogenerated/TaintedPath/normalizedPaths.js:160:14:160:49 | pathMod ... y.path) |
| autogenerated/TaintedPath/normalizedPaths.js:162:7:162:25 | path.includes('..') |
| autogenerated/TaintedPath/normalizedPaths.js:165:3:165:23 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:167:8:167:34 | pathMod ... e(path) |
| autogenerated/TaintedPath/normalizedPaths.js:168:5:168:25 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:170:5:170:25 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:173:1:211:2 | app.get ... T OK\\n}) |
| autogenerated/TaintedPath/normalizedPaths.js:179:7:179:33 | pathMod ... e(path) |
| autogenerated/TaintedPath/normalizedPaths.js:180:7:180:26 | path.startsWith('/') |
| autogenerated/TaintedPath/normalizedPaths.js:181:7:181:27 | path.st ... h('/x') |
| autogenerated/TaintedPath/normalizedPaths.js:182:7:182:26 | path.startsWith('.') |
| autogenerated/TaintedPath/normalizedPaths.js:184:3:184:23 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:186:7:186:33 | pathMod ... e(path) |
| autogenerated/TaintedPath/normalizedPaths.js:187:5:187:25 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:189:5:189:25 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:191:7:191:25 | path.includes('..') |
| autogenerated/TaintedPath/normalizedPaths.js:192:5:192:25 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:194:5:194:25 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:196:8:196:26 | path.includes('..') |
| autogenerated/TaintedPath/normalizedPaths.js:196:32:196:58 | pathMod ... e(path) |
| autogenerated/TaintedPath/normalizedPaths.js:197:5:197:25 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:199:5:199:25 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:201:24:201:49 | pathMod ... e(path) |
| autogenerated/TaintedPath/normalizedPaths.js:202:7:202:49 | normali ... r/www') |
| autogenerated/TaintedPath/normalizedPaths.js:203:5:203:35 | fs.read ... edPath) |
| autogenerated/TaintedPath/normalizedPaths.js:205:5:205:35 | fs.read ... edPath) |
| autogenerated/TaintedPath/normalizedPaths.js:207:7:207:49 | normali ... r/www') |
| autogenerated/TaintedPath/normalizedPaths.js:207:54:207:99 | normali ... ublic') |
| autogenerated/TaintedPath/normalizedPaths.js:208:5:208:35 | fs.read ... edPath) |
| autogenerated/TaintedPath/normalizedPaths.js:210:5:210:35 | fs.read ... edPath) |
| autogenerated/TaintedPath/normalizedPaths.js:213:1:223:2 | app.get ... ized\\n}) |
| autogenerated/TaintedPath/normalizedPaths.js:214:14:214:49 | pathMod ... y.path) |
| autogenerated/TaintedPath/normalizedPaths.js:216:8:216:34 | pathMod ... e(path) |
| autogenerated/TaintedPath/normalizedPaths.js:216:40:216:60 | path.st ... h('..') |
| autogenerated/TaintedPath/normalizedPaths.js:217:5:217:25 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:219:10:219:33 | decodeU ... t(path) |
| autogenerated/TaintedPath/normalizedPaths.js:221:8:221:34 | pathMod ... e(path) |
| autogenerated/TaintedPath/normalizedPaths.js:221:40:221:60 | path.st ... h('..') |
| autogenerated/TaintedPath/normalizedPaths.js:222:5:222:25 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:225:1:233:2 | app.get ... \\n  }\\n}) |
| autogenerated/TaintedPath/normalizedPaths.js:226:14:226:49 | pathMod ... y.path) |
| autogenerated/TaintedPath/normalizedPaths.js:226:14:226:70 | pathMod ... g, ' ') |
| autogenerated/TaintedPath/normalizedPaths.js:227:8:227:34 | pathMod ... e(path) |
| autogenerated/TaintedPath/normalizedPaths.js:228:5:228:25 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:230:12:230:36 | path.re ... /g, '') |
| autogenerated/TaintedPath/normalizedPaths.js:231:5:231:25 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:235:1:251:2 | app.get ... rity\\n}) |
| autogenerated/TaintedPath/normalizedPaths.js:236:14:236:47 | pathMod ... y.path) |
| autogenerated/TaintedPath/normalizedPaths.js:238:3:238:23 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:240:14:240:24 | something() |
| autogenerated/TaintedPath/normalizedPaths.js:242:7:242:40 | path.su ... length) |
| autogenerated/TaintedPath/normalizedPaths.js:243:5:243:25 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:245:5:245:25 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:247:7:247:36 | path.sl ... length) |
| autogenerated/TaintedPath/normalizedPaths.js:248:5:248:25 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:250:5:250:25 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:253:1:298:2 | app.get ... \\n  }\\n}) |
| autogenerated/TaintedPath/normalizedPaths.js:254:14:254:47 | pathMod ... y.path) |
| autogenerated/TaintedPath/normalizedPaths.js:256:3:256:23 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:258:14:258:24 | something() |
| autogenerated/TaintedPath/normalizedPaths.js:260:18:260:56 | pathMod ... , path) |
| autogenerated/TaintedPath/normalizedPaths.js:261:6:261:47 | relativ ... le.sep) |
| autogenerated/TaintedPath/normalizedPaths.js:262:5:262:25 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:264:5:264:25 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:267:17:267:42 | pathMod ... e(path) |
| autogenerated/TaintedPath/normalizedPaths.js:268:22:268:85 | pathMod ... ewpath) |
| autogenerated/TaintedPath/normalizedPaths.js:268:42:268:75 | pathMod ... aceDir) |
| autogenerated/TaintedPath/normalizedPaths.js:269:7:269:49 | relativ ... le.sep) |
| autogenerated/TaintedPath/normalizedPaths.js:270:5:270:28 | fs.read ... ewpath) |
| autogenerated/TaintedPath/normalizedPaths.js:272:5:272:28 | fs.read ... ewpath) |
| autogenerated/TaintedPath/normalizedPaths.js:275:17:275:42 | pathMod ... e(path) |
| autogenerated/TaintedPath/normalizedPaths.js:276:22:276:85 | pathMod ... ewpath) |
| autogenerated/TaintedPath/normalizedPaths.js:276:42:276:75 | pathMod ... aceDir) |
| autogenerated/TaintedPath/normalizedPaths.js:277:7:277:33 | relativ ... ('../') |
| autogenerated/TaintedPath/normalizedPaths.js:278:5:278:28 | fs.read ... ewpath) |
| autogenerated/TaintedPath/normalizedPaths.js:280:5:280:28 | fs.read ... ewpath) |
| autogenerated/TaintedPath/normalizedPaths.js:283:17:283:42 | pathMod ... e(path) |
| autogenerated/TaintedPath/normalizedPaths.js:284:22:284:85 | pathMod ... ewpath) |
| autogenerated/TaintedPath/normalizedPaths.js:284:42:284:75 | pathMod ... aceDir) |
| autogenerated/TaintedPath/normalizedPaths.js:285:7:285:40 | pathMod ... vePath) |
| autogenerated/TaintedPath/normalizedPaths.js:285:7:285:55 | pathMod ... ('../') |
| autogenerated/TaintedPath/normalizedPaths.js:286:5:286:28 | fs.read ... ewpath) |
| autogenerated/TaintedPath/normalizedPaths.js:288:5:288:28 | fs.read ... ewpath) |
| autogenerated/TaintedPath/normalizedPaths.js:291:17:291:42 | pathMod ... e(path) |
| autogenerated/TaintedPath/normalizedPaths.js:292:22:292:85 | pathMod ... ewpath) |
| autogenerated/TaintedPath/normalizedPaths.js:292:42:292:75 | pathMod ... aceDir) |
| autogenerated/TaintedPath/normalizedPaths.js:293:7:293:40 | pathMod ... vePath) |
| autogenerated/TaintedPath/normalizedPaths.js:293:7:293:55 | pathMod ... ('../') |
| autogenerated/TaintedPath/normalizedPaths.js:294:5:294:28 | fs.read ... ewpath) |
| autogenerated/TaintedPath/normalizedPaths.js:296:5:296:28 | fs.read ... ewpath) |
| autogenerated/TaintedPath/normalizedPaths.js:300:20:300:44 | require ... nside") |
| autogenerated/TaintedPath/normalizedPaths.js:301:20:301:44 | require ... nside") |
| autogenerated/TaintedPath/normalizedPaths.js:302:1:336:2 | app.get ... \\n\\t}\\n\\n}) |
| autogenerated/TaintedPath/normalizedPaths.js:304:2:304:22 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:305:6:305:29 | isPathI ... , SAFE) |
| autogenerated/TaintedPath/normalizedPaths.js:306:3:306:23 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:309:3:309:23 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:312:6:312:29 | pathIsI ... , SAFE) |
| autogenerated/TaintedPath/normalizedPaths.js:313:3:313:23 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:316:3:316:23 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:320:23:320:49 | pathMod ... , path) |
| autogenerated/TaintedPath/normalizedPaths.js:321:6:321:39 | pathIsI ... , SAFE) |
| autogenerated/TaintedPath/normalizedPaths.js:322:3:322:33 | fs.read ... edPath) |
| autogenerated/TaintedPath/normalizedPaths.js:325:3:325:33 | fs.read ... edPath) |
| autogenerated/TaintedPath/normalizedPaths.js:328:6:328:39 | pathIsI ... , SAFE) |
| autogenerated/TaintedPath/normalizedPaths.js:329:3:329:33 | fs.read ... edPath) |
| autogenerated/TaintedPath/normalizedPaths.js:332:3:332:33 | fs.read ... edPath) |
| autogenerated/TaintedPath/normalizedPaths.js:338:1:350:2 | app.get ... / OK\\n}) |
| autogenerated/TaintedPath/normalizedPaths.js:339:13:339:46 | pathMod ... y.path) |
| autogenerated/TaintedPath/normalizedPaths.js:341:2:341:22 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:343:12:343:35 | pathMod ... e(path) |
| autogenerated/TaintedPath/normalizedPaths.js:345:6:345:22 | abs.indexOf(root) |
| autogenerated/TaintedPath/normalizedPaths.js:346:3:346:23 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:349:2:349:22 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:352:16:352:28 | process.cwd() |
| autogenerated/TaintedPath/normalizedPaths.js:353:1:373:2 | app.get ... \\n  }\\n}) |
| autogenerated/TaintedPath/normalizedPaths.js:356:3:356:23 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:358:21:358:51 | pathMod ... , path) |
| autogenerated/TaintedPath/normalizedPaths.js:363:5:363:32 | fs.read ... stPath) |
| autogenerated/TaintedPath/normalizedPaths.js:366:5:366:32 | fs.read ... stPath) |
| autogenerated/TaintedPath/normalizedPaths.js:368:3:368:29 | fs.read ... etPath) |
| autogenerated/TaintedPath/normalizedPaths.js:371:12:371:40 | request ... otPath) |
| autogenerated/TaintedPath/normalizedPaths.js:376:1:382:2 | app.get ... T OK\\n}) |
| autogenerated/TaintedPath/normalizedPaths.js:379:3:379:23 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:381:3:381:30 | fs.read ... (path)) |
| autogenerated/TaintedPath/normalizedPaths.js:381:19:381:29 | slash(path) |
| autogenerated/TaintedPath/normalizedPaths.js:384:1:404:2 | app.get ... \\n  }\\n}) |
| autogenerated/TaintedPath/normalizedPaths.js:385:14:385:46 | pathMod ... uery.x) |
| autogenerated/TaintedPath/normalizedPaths.js:386:7:386:33 | pathMod ... e(path) |
| autogenerated/TaintedPath/normalizedPaths.js:388:3:388:23 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:389:8:389:23 | path.match(/\\./) |
| autogenerated/TaintedPath/normalizedPaths.js:390:5:390:25 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:392:8:392:25 | path.match(/\\.\\./) |
| autogenerated/TaintedPath/normalizedPaths.js:393:5:393:25 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:395:8:395:27 | path.match(/\\.\\.\\//) |
| autogenerated/TaintedPath/normalizedPaths.js:396:5:396:25 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:398:8:398:30 | path.ma ... \\/foo/) |
| autogenerated/TaintedPath/normalizedPaths.js:399:5:399:25 | fs.read ... c(path) |
| autogenerated/TaintedPath/normalizedPaths.js:401:8:401:36 | path.ma ... \\.\\\\)/) |
| autogenerated/TaintedPath/normalizedPaths.js:402:5:402:25 | fs.read ... c(path) |
| autogenerated/TaintedPath/other-fs-libraries.js:1:12:1:26 | require("http") |
| autogenerated/TaintedPath/other-fs-libraries.js:2:9:2:22 | require("url") |
| autogenerated/TaintedPath/other-fs-libraries.js:3:8:3:20 | require("fs") |
| autogenerated/TaintedPath/other-fs-libraries.js:4:16:4:37 | require ... ul-fs") |
| autogenerated/TaintedPath/other-fs-libraries.js:5:13:5:31 | require("fs-extra") |
| autogenerated/TaintedPath/other-fs-libraries.js:6:16:6:37 | require ... al-fs") |
| autogenerated/TaintedPath/other-fs-libraries.js:8:14:25:2 | http.cr ... T OK\\n}) |
| autogenerated/TaintedPath/other-fs-libraries.js:9:14:9:37 | url.par ... , true) |
| autogenerated/TaintedPath/other-fs-libraries.js:11:3:11:23 | fs.read ... c(path) |
| autogenerated/TaintedPath/other-fs-libraries.js:12:3:12:31 | gracefu ... c(path) |
| autogenerated/TaintedPath/other-fs-libraries.js:13:3:13:28 | fsExtra ... c(path) |
| autogenerated/TaintedPath/other-fs-libraries.js:14:3:14:31 | origina ... c(path) |
| autogenerated/TaintedPath/other-fs-libraries.js:16:3:16:38 | getFsMo ... c(path) |
| autogenerated/TaintedPath/other-fs-libraries.js:17:3:17:39 | getFsMo ... c(path) |
| autogenerated/TaintedPath/other-fs-libraries.js:19:3:19:27 | require ... odule") |
| autogenerated/TaintedPath/other-fs-libraries.js:19:3:19:60 | require ... c(path) |
| autogenerated/TaintedPath/other-fs-libraries.js:21:28:23:11 | require ... : "fs") |
| autogenerated/TaintedPath/other-fs-libraries.js:24:3:24:39 | flexibl ... c(path) |
| autogenerated/TaintedPath/other-fs-libraries.js:29:12:29:24 | require("fs") |
| autogenerated/TaintedPath/other-fs-libraries.js:31:12:31:33 | require ... al-fs") |
| autogenerated/TaintedPath/other-fs-libraries.js:35:12:35:26 | require("util") |
| autogenerated/TaintedPath/other-fs-libraries.js:37:1:43:2 | http.cr ... T OK\\n}) |
| autogenerated/TaintedPath/other-fs-libraries.js:38:14:38:37 | url.par ... , true) |
| autogenerated/TaintedPath/other-fs-libraries.js:40:3:40:33 | util.pr ... leSync) |
| autogenerated/TaintedPath/other-fs-libraries.js:40:3:40:39 | util.pr ... )(path) |
| autogenerated/TaintedPath/other-fs-libraries.js:41:3:41:21 | require("bluebird") |
| autogenerated/TaintedPath/other-fs-libraries.js:41:3:41:48 | require ... leSync) |
| autogenerated/TaintedPath/other-fs-libraries.js:41:3:41:54 | require ... )(path) |
| autogenerated/TaintedPath/other-fs-libraries.js:42:3:42:21 | require("bluebird") |
| autogenerated/TaintedPath/other-fs-libraries.js:42:3:42:38 | require ... All(fs) |
| autogenerated/TaintedPath/other-fs-libraries.js:42:3:42:57 | require ... c(path) |
| autogenerated/TaintedPath/other-fs-libraries.js:46:17:46:47 | require ... odule") |
| autogenerated/TaintedPath/other-fs-libraries.js:48:1:64:2 | http.cr ... T OK\\n}) |
| autogenerated/TaintedPath/other-fs-libraries.js:49:14:49:37 | url.par ... , true) |
| autogenerated/TaintedPath/other-fs-libraries.js:51:3:51:23 | fs.read ... c(path) |
| autogenerated/TaintedPath/other-fs-libraries.js:52:3:52:28 | asyncFS ... c(path) |
| autogenerated/TaintedPath/other-fs-libraries.js:54:3:54:17 | require("pify") |
| autogenerated/TaintedPath/other-fs-libraries.js:54:3:54:34 | require ... leSync) |
| autogenerated/TaintedPath/other-fs-libraries.js:54:3:54:40 | require ... )(path) |
| autogenerated/TaintedPath/other-fs-libraries.js:55:3:55:17 | require("pify") |
| autogenerated/TaintedPath/other-fs-libraries.js:55:3:55:21 | require("pify")(fs) |
| autogenerated/TaintedPath/other-fs-libraries.js:55:3:55:40 | require ... c(path) |
| autogenerated/TaintedPath/other-fs-libraries.js:57:3:57:27 | require ... isify') |
| autogenerated/TaintedPath/other-fs-libraries.js:57:3:57:44 | require ... leSync) |
| autogenerated/TaintedPath/other-fs-libraries.js:57:3:57:50 | require ... )(path) |
| autogenerated/TaintedPath/other-fs-libraries.js:59:3:59:20 | require("thenify") |
| autogenerated/TaintedPath/other-fs-libraries.js:59:3:59:37 | require ... leSync) |
| autogenerated/TaintedPath/other-fs-libraries.js:59:3:59:43 | require ... )(path) |
| autogenerated/TaintedPath/other-fs-libraries.js:61:19:61:37 | require('read-pkg') |
| autogenerated/TaintedPath/other-fs-libraries.js:62:13:62:48 | readPkg ...  path}) |
| autogenerated/TaintedPath/other-fs-libraries.js:63:20:63:56 | readPkg ...  path}) |
| autogenerated/TaintedPath/other-fs-libraries.js:66:16:66:32 | require("mkdirp") |
| autogenerated/TaintedPath/other-fs-libraries.js:67:1:73:2 | http.cr ... T OK\\n}) |
| autogenerated/TaintedPath/other-fs-libraries.js:68:14:68:37 | url.par ... , true) |
| autogenerated/TaintedPath/other-fs-libraries.js:70:3:70:23 | fs.read ... c(path) |
| autogenerated/TaintedPath/other-fs-libraries.js:71:3:71:14 | mkdirp(path) |
| autogenerated/TaintedPath/other-fs-libraries.js:72:3:72:19 | mkdirp.sync(path) |
| autogenerated/TaintedPath/prettier.js:1:17:1:34 | require('express') |
| autogenerated/TaintedPath/prettier.js:2:18:2:36 | require("prettier") |
| autogenerated/TaintedPath/prettier.js:4:13:4:21 | express() |
| autogenerated/TaintedPath/prettier.js:5:1:14:2 | app.get ...  });\\n}) |
| autogenerated/TaintedPath/prettier.js:7:5:7:29 | prettie ... nfig(p) |
| autogenerated/TaintedPath/prettier.js:7:5:9:6 | prettie ... \\n    }) |
| autogenerated/TaintedPath/prettier.js:8:27:8:57 | prettie ... ptions) |
| autogenerated/TaintedPath/prettier.js:11:5:11:46 | prettie ... ig: p}) |
| autogenerated/TaintedPath/prettier.js:11:5:13:6 | prettie ... \\n    }) |
| autogenerated/TaintedPath/prettier.js:12:27:12:57 | prettie ... ptions) |
| autogenerated/TaintedPath/pupeteer.js:1:19:1:38 | require('puppeteer') |
| autogenerated/TaintedPath/pupeteer.js:2:22:2:45 | require ... rrent') |
| autogenerated/TaintedPath/pupeteer.js:5:28:5:48 | parseTo ... orrent) |
| autogenerated/TaintedPath/pupeteer.js:7:27:7:44 | puppeteer.launch() |
| autogenerated/TaintedPath/pupeteer.js:8:24:8:40 | browser.newPage() |
| autogenerated/TaintedPath/pupeteer.js:9:11:9:51 | page.pd ... 'a4' }) |
| autogenerated/TaintedPath/pupeteer.js:11:25:11:39 | browser.pages() |
| autogenerated/TaintedPath/pupeteer.js:12:25:12:35 | something() |
| autogenerated/TaintedPath/pupeteer.js:13:9:13:46 | pages[i ... nted }) |
| autogenerated/TaintedPath/pupeteer.js:16:11:16:25 | browser.close() |
| autogenerated/TaintedPath/tainted-access-paths.js:1:10:1:22 | require('fs') |
| autogenerated/TaintedPath/tainted-access-paths.js:2:12:2:26 | require('http') |
| autogenerated/TaintedPath/tainted-access-paths.js:3:11:3:24 | require('url') |
| autogenerated/TaintedPath/tainted-access-paths.js:5:14:32:2 | http.cr ... T OK\\n}) |
| autogenerated/TaintedPath/tainted-access-paths.js:6:14:6:37 | url.par ... , true) |
| autogenerated/TaintedPath/tainted-access-paths.js:8:3:8:23 | fs.read ... c(path) |
| autogenerated/TaintedPath/tainted-access-paths.js:10:19:10:29 | something() |
| autogenerated/TaintedPath/tainted-access-paths.js:12:3:12:26 | fs.read ... bj.sub) |
| autogenerated/TaintedPath/tainted-access-paths.js:16:3:16:26 | fs.read ... bj.sub) |
| autogenerated/TaintedPath/tainted-access-paths.js:19:7:19:14 | random() |
| autogenerated/TaintedPath/tainted-access-paths.js:20:5:20:29 | fs.read ... j.sub2) |
| autogenerated/TaintedPath/tainted-access-paths.js:23:7:23:14 | random() |
| autogenerated/TaintedPath/tainted-access-paths.js:26:3:26:27 | fs.read ... j.sub3) |
| autogenerated/TaintedPath/tainted-access-paths.js:29:5:29:29 | fs.read ... j.sub4) |
| autogenerated/TaintedPath/tainted-access-paths.js:30:7:30:31 | fs.read ... j.sub4) |
| autogenerated/TaintedPath/tainted-access-paths.js:31:7:31:31 | fs.read ... j.sub4) |
| autogenerated/TaintedPath/tainted-access-paths.js:34:1:34:15 | server.listen() |
| autogenerated/TaintedPath/tainted-access-paths.js:36:14:36:31 | require('node:fs') |
| autogenerated/TaintedPath/tainted-access-paths.js:38:15:41:2 | http.cr ... T OK\\n}) |
| autogenerated/TaintedPath/tainted-access-paths.js:39:14:39:37 | url.par ... , true) |
| autogenerated/TaintedPath/tainted-access-paths.js:40:3:40:27 | nodefs. ... c(path) |
| autogenerated/TaintedPath/tainted-access-paths.js:43:1:43:16 | server2.listen() |
| autogenerated/TaintedPath/tainted-access-paths.js:45:16:45:32 | require("chownr") |
| autogenerated/TaintedPath/tainted-access-paths.js:47:15:50:2 | http.cr ... T OK\\n}) |
| autogenerated/TaintedPath/tainted-access-paths.js:48:14:48:37 | url.par ... , true) |
| autogenerated/TaintedPath/tainted-access-paths.js:49:3:49:55 | chownr( ... rr) {}) |
| autogenerated/TaintedPath/tainted-array-steps.js:1:10:1:22 | require('fs') |
| autogenerated/TaintedPath/tainted-array-steps.js:2:12:2:26 | require('http') |
| autogenerated/TaintedPath/tainted-array-steps.js:3:11:3:24 | require('url') |
| autogenerated/TaintedPath/tainted-array-steps.js:4:16:4:43 | require ... ename') |
| autogenerated/TaintedPath/tainted-array-steps.js:5:18:5:32 | require('path') |
| autogenerated/TaintedPath/tainted-array-steps.js:8:14:15:2 | http.cr ... NCY]\\n}) |
| autogenerated/TaintedPath/tainted-array-steps.js:9:14:9:37 | url.par ... , true) |
| autogenerated/TaintedPath/tainted-array-steps.js:10:3:10:56 | res.wri ... ('/'))) |
| autogenerated/TaintedPath/tainted-array-steps.js:10:13:10:55 | fs.read ... n('/')) |
| autogenerated/TaintedPath/tainted-array-steps.js:10:29:10:54 | ['publi ... in('/') |
| autogenerated/TaintedPath/tainted-array-steps.js:13:11:13:41 | parts.m ... Case()) |
| autogenerated/TaintedPath/tainted-array-steps.js:13:26:13:40 | x.toLowerCase() |
| autogenerated/TaintedPath/tainted-array-steps.js:14:3:14:45 | res.wri ... ('/'))) |
| autogenerated/TaintedPath/tainted-array-steps.js:14:13:14:44 | fs.read ... n('/')) |
| autogenerated/TaintedPath/tainted-array-steps.js:14:29:14:43 | parts.join('/') |
| autogenerated/TaintedPath/tainted-array-steps.js:17:1:17:15 | server.listen() |
| autogenerated/TaintedPath/tainted-require.js:1:15:1:32 | require('express') |
| autogenerated/TaintedPath/tainted-require.js:3:11:3:19 | express() |
| autogenerated/TaintedPath/tainted-require.js:5:1:8:2 | app.get ... "));\\n}) |
| autogenerated/TaintedPath/tainted-require.js:7:11:7:38 | require ... dule")) |
| autogenerated/TaintedPath/tainted-require.js:7:19:7:37 | req.param("module") |
| autogenerated/TaintedPath/tainted-require.js:10:17:10:34 | require("resolve") |
| autogenerated/TaintedPath/tainted-require.js:11:1:17:2 | app.get ...  });\\n}) |
| autogenerated/TaintedPath/tainted-require.js:12:16:12:48 | resolve ... dule")) |
| autogenerated/TaintedPath/tainted-require.js:12:29:12:47 | req.param("module") |
| autogenerated/TaintedPath/tainted-require.js:14:3:16:4 | resolve ... s;\\n  }) |
| autogenerated/TaintedPath/tainted-require.js:14:11:14:29 | req.param("module") |
| autogenerated/TaintedPath/tainted-sendFile.js:1:15:1:32 | require('express') |
| autogenerated/TaintedPath/tainted-sendFile.js:2:12:2:26 | require('path') |
| autogenerated/TaintedPath/tainted-sendFile.js:4:11:4:19 | express() |
| autogenerated/TaintedPath/tainted-sendFile.js:6:1:28:2 | app.get ... ta/'\\n}) |
| autogenerated/TaintedPath/tainted-sendFile.js:8:3:8:34 | res.sen ... imme")) |
| autogenerated/TaintedPath/tainted-sendFile.js:8:16:8:33 | req.param("gimme") |
| autogenerated/TaintedPath/tainted-sendFile.js:10:3:10:34 | res.sen ... imme")) |
| autogenerated/TaintedPath/tainted-sendFile.js:10:16:10:33 | req.param("gimme") |
| autogenerated/TaintedPath/tainted-sendFile.js:13:3:13:59 | res.sen ... wd() }) |
| autogenerated/TaintedPath/tainted-sendFile.js:13:16:13:33 | req.param("gimme") |
| autogenerated/TaintedPath/tainted-sendFile.js:13:44:13:56 | process.cwd() |
| autogenerated/TaintedPath/tainted-sendFile.js:15:3:15:59 | res.sen ... wd() }) |
| autogenerated/TaintedPath/tainted-sendFile.js:15:16:15:33 | req.param("gimme") |
| autogenerated/TaintedPath/tainted-sendFile.js:15:44:15:56 | process.cwd() |
| autogenerated/TaintedPath/tainted-sendFile.js:18:3:18:61 | res.sen ... ir") }) |
| autogenerated/TaintedPath/tainted-sendFile.js:18:16:18:32 | req.param("file") |
| autogenerated/TaintedPath/tainted-sendFile.js:18:43:18:58 | req.param("dir") |
| autogenerated/TaintedPath/tainted-sendFile.js:20:17:20:33 | path.resolve('.') |
| autogenerated/TaintedPath/tainted-sendFile.js:21:3:21:49 | res.sen ... rams.x) |
| autogenerated/TaintedPath/tainted-sendFile.js:22:3:22:38 | res.sen ... rams.x) |
| autogenerated/TaintedPath/tainted-sendFile.js:24:3:24:50 | res.sen ... ams.x)) |
| autogenerated/TaintedPath/tainted-sendFile.js:24:16:24:49 | path.re ... rams.x) |
| autogenerated/TaintedPath/tainted-sendFile.js:25:3:25:47 | res.sen ... ams.x)) |
| autogenerated/TaintedPath/tainted-sendFile.js:25:16:25:46 | path.jo ... rams.x) |
| autogenerated/TaintedPath/tainted-sendFile.js:27:3:27:57 | res.sen ... ams.x)) |
| autogenerated/TaintedPath/tainted-sendFile.js:27:26:27:56 | path.jo ... rams.x) |
| autogenerated/TaintedPath/tainted-string-steps.js:1:10:1:22 | require('fs') |
| autogenerated/TaintedPath/tainted-string-steps.js:2:12:2:26 | require('http') |
| autogenerated/TaintedPath/tainted-string-steps.js:3:11:3:24 | require('url') |
| autogenerated/TaintedPath/tainted-string-steps.js:5:14:29:2 | http.cr ... NCY]\\n}) |
| autogenerated/TaintedPath/tainted-string-steps.js:6:14:6:37 | url.par ... , true) |
| autogenerated/TaintedPath/tainted-string-steps.js:7:2:7:38 | fs.read ... (i, j)) |
| autogenerated/TaintedPath/tainted-string-steps.js:7:18:7:37 | path.substring(i, j) |
| autogenerated/TaintedPath/tainted-string-steps.js:8:2:8:35 | fs.read ... ing(4)) |
| autogenerated/TaintedPath/tainted-string-steps.js:8:18:8:34 | path.substring(4) |
| autogenerated/TaintedPath/tainted-string-steps.js:9:2:9:38 | fs.read ... (0, i)) |
| autogenerated/TaintedPath/tainted-string-steps.js:9:18:9:37 | path.substring(0, i) |
| autogenerated/TaintedPath/tainted-string-steps.js:10:2:10:32 | fs.read ... str(4)) |
| autogenerated/TaintedPath/tainted-string-steps.js:10:18:10:31 | path.substr(4) |
| autogenerated/TaintedPath/tainted-string-steps.js:11:2:11:31 | fs.read ... ice(4)) |
| autogenerated/TaintedPath/tainted-string-steps.js:11:18:11:30 | path.slice(4) |
| autogenerated/TaintedPath/tainted-string-steps.js:13:2:13:38 | fs.read ... known)) |
| autogenerated/TaintedPath/tainted-string-steps.js:13:18:13:37 | path.concat(unknown) |
| autogenerated/TaintedPath/tainted-string-steps.js:14:2:14:38 | fs.read ... (path)) |
| autogenerated/TaintedPath/tainted-string-steps.js:14:18:14:37 | unknown.concat(path) |
| autogenerated/TaintedPath/tainted-string-steps.js:15:2:15:47 | fs.read ...  path)) |
| autogenerated/TaintedPath/tainted-string-steps.js:15:18:15:46 | unknown ... , path) |
| autogenerated/TaintedPath/tainted-string-steps.js:17:2:17:29 | fs.read ... trim()) |
| autogenerated/TaintedPath/tainted-string-steps.js:17:18:17:28 | path.trim() |
| autogenerated/TaintedPath/tainted-string-steps.js:18:2:18:36 | fs.read ... Case()) |
| autogenerated/TaintedPath/tainted-string-steps.js:18:18:18:35 | path.toLowerCase() |
| autogenerated/TaintedPath/tainted-string-steps.js:20:2:20:33 | fs.read ... t('/')) |
| autogenerated/TaintedPath/tainted-string-steps.js:20:18:20:32 | path.split('/') |
| autogenerated/TaintedPath/tainted-string-steps.js:21:2:21:36 | fs.read ... /')[0]) |
| autogenerated/TaintedPath/tainted-string-steps.js:21:18:21:32 | path.split('/') |
| autogenerated/TaintedPath/tainted-string-steps.js:22:2:22:36 | fs.read ... /')[i]) |
| autogenerated/TaintedPath/tainted-string-steps.js:22:18:22:32 | path.split('/') |
| autogenerated/TaintedPath/tainted-string-steps.js:23:2:23:37 | fs.read ... //)[i]) |
| autogenerated/TaintedPath/tainted-string-steps.js:23:18:23:33 | path.split(/\\//) |
| autogenerated/TaintedPath/tainted-string-steps.js:24:2:24:36 | fs.read ... ?")[0]) |
| autogenerated/TaintedPath/tainted-string-steps.js:24:18:24:32 | path.split("?") |
| autogenerated/TaintedPath/tainted-string-steps.js:25:2:25:40 | fs.read ... wn)[i]) |
| autogenerated/TaintedPath/tainted-string-steps.js:25:18:25:36 | path.split(unknown) |
| autogenerated/TaintedPath/tainted-string-steps.js:26:2:26:46 | fs.read ... atever) |
| autogenerated/TaintedPath/tainted-string-steps.js:26:18:26:36 | path.split(unknown) |
| autogenerated/TaintedPath/tainted-string-steps.js:27:2:27:37 | fs.read ... known)) |
| autogenerated/TaintedPath/tainted-string-steps.js:27:18:27:36 | path.split(unknown) |
| autogenerated/TaintedPath/tainted-string-steps.js:28:2:28:36 | fs.read ... ?")[i]) |
| autogenerated/TaintedPath/tainted-string-steps.js:28:18:28:32 | path.split("?") |
| autogenerated/TaintedPath/tainted-string-steps.js:31:1:31:15 | server.listen() |
| autogenerated/TaintedPath/torrents.js:1:22:1:45 | require ... rrent') |
| autogenerated/TaintedPath/torrents.js:2:12:2:24 | require('fs') |
| autogenerated/TaintedPath/torrents.js:5:13:5:33 | parseTo ... orrent) |
| autogenerated/TaintedPath/torrents.js:7:9:7:28 | fs.readFileSync(loc) |
| autogenerated/TaintedPath/typescript.ts:1:10:1:22 | require('fs') |
| autogenerated/TaintedPath/typescript.ts:2:12:2:26 | require('http') |
| autogenerated/TaintedPath/typescript.ts:3:11:3:24 | require('url') |
| autogenerated/TaintedPath/typescript.ts:4:16:4:43 | require ... ename') |
| autogenerated/TaintedPath/typescript.ts:5:18:5:32 | require('path') |
| autogenerated/TaintedPath/typescript.ts:8:14:34:2 | http.cr ... ted\\n\\n}) |
| autogenerated/TaintedPath/typescript.ts:9:14:9:37 | url.par ... , true) |
| autogenerated/TaintedPath/typescript.ts:12:3:12:34 | res.wri ... (path)) |
| autogenerated/TaintedPath/typescript.ts:12:13:12:33 | fs.read ... c(path) |
| autogenerated/TaintedPath/typescript.ts:15:5:15:36 | res.wri ... (path)) |
| autogenerated/TaintedPath/typescript.ts:15:15:15:35 | fs.read ... c(path) |
| autogenerated/TaintedPath/typescript.ts:18:13:18:45 | res.wri ... path2)) |
| autogenerated/TaintedPath/typescript.ts:18:23:18:44 | fs.read ... (path2) |
| autogenerated/TaintedPath/typescript.ts:21:13:21:45 | res.wri ... path3)) |
| autogenerated/TaintedPath/typescript.ts:21:23:21:44 | fs.read ... (path3) |
| autogenerated/TaintedPath/typescript.ts:24:13:24:45 | res.wri ... path4)) |
| autogenerated/TaintedPath/typescript.ts:24:23:24:44 | fs.read ... (path4) |
| autogenerated/TaintedPath/typescript.ts:28:3:28:35 | res.wri ... path5)) |
| autogenerated/TaintedPath/typescript.ts:28:13:28:34 | fs.read ... (path5) |
| autogenerated/TaintedPath/typescript.ts:32:3:32:35 | res.wri ... path6)) |
| autogenerated/TaintedPath/typescript.ts:32:13:32:34 | fs.read ... (path6) |
| autogenerated/TaintedPath/views.js:1:32:1:56 | res.ren ... ams[0]) |
| autogenerated/Xss/DomBasedXss/addEventListener.js:1:1:3:2 | this.ad ... T OK\\n}) |
| autogenerated/Xss/DomBasedXss/addEventListener.js:2:5:2:30 | documen ... t.data) |
| autogenerated/Xss/DomBasedXss/addEventListener.js:5:1:7:2 | this.ad ... T OK\\n}) |
| autogenerated/Xss/DomBasedXss/addEventListener.js:6:5:6:24 | document.write(data) |
| autogenerated/Xss/DomBasedXss/addEventListener.js:11:9:11:30 | documen ... x.data) |
| autogenerated/Xss/DomBasedXss/addEventListener.js:12:9:12:34 | documen ... t.data) |
| autogenerated/Xss/DomBasedXss/addEventListener.js:13:9:13:30 | documen ... y.data) |
| autogenerated/Xss/DomBasedXss/addEventListener.js:16:5:16:71 | window. ... ems'})) |
| autogenerated/Xss/DomBasedXss/addEventListener.js:16:40:16:70 | foo.bin ... tems'}) |
| autogenerated/Xss/DomBasedXss/addEventListener.js:22:9:22:30 | documen ... e.data) |
| autogenerated/Xss/DomBasedXss/addEventListener.js:26:13:26:36 | mySet.i ... origin) |
| autogenerated/Xss/DomBasedXss/addEventListener.js:27:13:27:34 | documen ... e.data) |
| autogenerated/Xss/DomBasedXss/angular2-client.ts:6:2:10:2 | Compone ... ss']\\n}) |
| autogenerated/Xss/DomBasedXss/angular2-client.ts:22:5:22:72 | this.sa ... ).href) |
| autogenerated/Xss/DomBasedXss/angular2-client.ts:22:44:22:52 | \\u0275getDOM() |
| autogenerated/Xss/DomBasedXss/angular2-client.ts:22:44:22:66 | \\u0275getDOM ... ation() |
| autogenerated/Xss/DomBasedXss/angular2-client.ts:24:5:24:74 | this.sa ... ms.foo) |
| autogenerated/Xss/DomBasedXss/angular2-client.ts:25:5:25:79 | this.sa ... ms.foo) |
| autogenerated/Xss/DomBasedXss/angular2-client.ts:26:5:26:72 | this.sa ... agment) |
| autogenerated/Xss/DomBasedXss/angular2-client.ts:27:5:27:83 | this.sa ... 'foo')) |
| autogenerated/Xss/DomBasedXss/angular2-client.ts:27:44:27:82 | this.ro ... ('foo') |
| autogenerated/Xss/DomBasedXss/angular2-client.ts:28:5:28:88 | this.sa ... 'foo')) |
| autogenerated/Xss/DomBasedXss/angular2-client.ts:28:44:28:87 | this.ro ... ('foo') |
| autogenerated/Xss/DomBasedXss/angular2-client.ts:29:5:31:6 | this.ro ... \\n    }) |
| autogenerated/Xss/DomBasedXss/angular2-client.ts:30:7:30:60 | this.sa ... 'foo')) |
| autogenerated/Xss/DomBasedXss/angular2-client.ts:30:46:30:59 | map.get('foo') |
| autogenerated/Xss/DomBasedXss/angular2-client.ts:33:5:33:75 | this.sa ... ].path) |
| autogenerated/Xss/DomBasedXss/angular2-client.ts:34:5:34:83 | this.sa ... ters.x) |
| autogenerated/Xss/DomBasedXss/angular2-client.ts:35:5:35:92 | this.sa ... t('x')) |
| autogenerated/Xss/DomBasedXss/angular2-client.ts:35:44:35:91 | this.ro ... et('x') |
| autogenerated/Xss/DomBasedXss/angular2-client.ts:36:5:36:92 | this.sa ... rams.x) |
| autogenerated/Xss/DomBasedXss/angular2-client.ts:38:5:38:59 | this.sa ... er.url) |
| autogenerated/Xss/DomBasedXss/angular2-client.ts:40:5:40:60 | this.sa ... er.url) |
| autogenerated/Xss/DomBasedXss/angular2-client.ts:44:5:44:77 | this.sa ... 'foo')) |
| autogenerated/Xss/DomBasedXss/angular2-client.ts:44:44:44:76 | routeSn ... ('foo') |
| autogenerated/Xss/DomBasedXss/classnames.js:7:47:7:69 | classNa ... w.name) |
| autogenerated/Xss/DomBasedXss/classnames.js:8:47:8:70 | classNa ... w.name) |
| autogenerated/Xss/DomBasedXss/classnames.js:9:47:9:70 | classNa ... w.name) |
| autogenerated/Xss/DomBasedXss/classnames.js:10:23:10:57 | classNa ... .name}) |
| autogenerated/Xss/DomBasedXss/classnames.js:11:47:11:64 | unsafeStyle('foo') |
| autogenerated/Xss/DomBasedXss/classnames.js:12:21:12:39 | classNames.bind({}) |
| autogenerated/Xss/DomBasedXss/classnames.js:13:47:13:68 | safeSty ... w.name) |
| autogenerated/Xss/DomBasedXss/classnames.js:14:47:14:62 | safeStyle('foo') |
| autogenerated/Xss/DomBasedXss/classnames.js:15:47:15:63 | clsx(window.name) |
| autogenerated/Xss/DomBasedXss/classnames.js:17:48:17:64 | clsx(window.name) |
| autogenerated/Xss/DomBasedXss/clipboard.ts:1:1:1:9 | $("#foo") |
| autogenerated/Xss/DomBasedXss/clipboard.ts:1:1:1:28 | $("#foo ...  paste) |
| autogenerated/Xss/DomBasedXss/clipboard.ts:7:18:7:52 | clipboa ... plain') |
| autogenerated/Xss/DomBasedXss/clipboard.ts:8:18:8:51 | clipboa ... /html') |
| autogenerated/Xss/DomBasedXss/clipboard.ts:11:5:11:22 | e.preventDefault() |
| autogenerated/Xss/DomBasedXss/clipboard.ts:13:17:13:45 | documen ... ('div') |
| autogenerated/Xss/DomBasedXss/clipboard.ts:19:5:19:29 | documen ... nd(div) |
| autogenerated/Xss/DomBasedXss/clipboard.ts:23:5:25:6 | el.addE ... \\n    }) |
| autogenerated/Xss/DomBasedXss/clipboard.ts:24:9:24:16 | $("#id") |
| autogenerated/Xss/DomBasedXss/clipboard.ts:24:9:24:59 | $("#id" ... html')) |
| autogenerated/Xss/DomBasedXss/clipboard.ts:24:23:24:58 | e.clipb ... /html') |
| autogenerated/Xss/DomBasedXss/clipboard.ts:28:1:30:2 | documen ... T OK\\n}) |
| autogenerated/Xss/DomBasedXss/clipboard.ts:29:5:29:12 | $("#id") |
| autogenerated/Xss/DomBasedXss/clipboard.ts:29:5:29:55 | $("#id" ... html')) |
| autogenerated/Xss/DomBasedXss/clipboard.ts:29:19:29:54 | e.clipb ... /html') |
| autogenerated/Xss/DomBasedXss/clipboard.ts:32:1:32:9 | $("#foo") |
| autogenerated/Xss/DomBasedXss/clipboard.ts:32:1:34:2 | $("#foo ... T OK\\n}) |
| autogenerated/Xss/DomBasedXss/clipboard.ts:33:5:33:12 | $("#id") |
| autogenerated/Xss/DomBasedXss/clipboard.ts:33:5:33:69 | $("#id" ... html')) |
| autogenerated/Xss/DomBasedXss/clipboard.ts:33:19:33:68 | e.origi ... /html') |
| autogenerated/Xss/DomBasedXss/clipboard.ts:37:15:37:43 | documen ... ("div") |
| autogenerated/Xss/DomBasedXss/clipboard.ts:42:22:42:56 | clipboa ... plain') |
| autogenerated/Xss/DomBasedXss/clipboard.ts:43:22:43:55 | clipboa ... /html') |
| autogenerated/Xss/DomBasedXss/clipboard.ts:46:9:46:26 | e.preventDefault() |
| autogenerated/Xss/DomBasedXss/clipboard.ts:48:21:48:49 | documen ... ('div') |
| autogenerated/Xss/DomBasedXss/clipboard.ts:54:9:54:33 | documen ... nd(div) |
| autogenerated/Xss/DomBasedXss/clipboard.ts:70:9:70:51 | e.clipb ... /html') |
| autogenerated/Xss/DomBasedXss/clipboard.ts:71:27:71:62 | e.clipb ... /html') |
| autogenerated/Xss/DomBasedXss/clipboard.ts:72:25:72:54 | documen ... 'html') |
| autogenerated/Xss/DomBasedXss/clipboard.ts:74:20:74:56 | contain ... ('img') |
| autogenerated/Xss/DomBasedXss/clipboard.ts:77:9:77:26 | dropItems.add(src) |
| autogenerated/Xss/DomBasedXss/clipboard.ts:79:16:79:59 | e.clipb ... plain') |
| autogenerated/Xss/DomBasedXss/clipboard.ts:80:25:80:61 | e.clipb ... plain') |
| autogenerated/Xss/DomBasedXss/clipboard.ts:82:11:82:41 | /^https ... inText) |
| autogenerated/Xss/DomBasedXss/clipboard.ts:83:9:83:32 | dropIte ... inText) |
| autogenerated/Xss/DomBasedXss/clipboard.ts:87:24:87:44 | Array.f ... pItems) |
| autogenerated/Xss/DomBasedXss/clipboard.ts:93:15:93:43 | documen ... ("div") |
| autogenerated/Xss/DomBasedXss/clipboard.ts:94:5:100:6 | div.add ... \\n    }) |
| autogenerated/Xss/DomBasedXss/clipboard.ts:98:22:98:54 | dataTra ... /html') |
| autogenerated/Xss/DomBasedXss/clipboard.ts:99:9:99:16 | $("#id") |
| autogenerated/Xss/DomBasedXss/clipboard.ts:99:9:99:27 | $("#id").html(html) |
| autogenerated/Xss/DomBasedXss/custom-element.js:3:37:3:36 | super(...args) |
| autogenerated/Xss/DomBasedXss/d3.js:1:12:1:24 | require('d3') |
| autogenerated/Xss/DomBasedXss/d3.js:8:5:8:22 | d3.select('#main') |
| autogenerated/Xss/DomBasedXss/d3.js:8:5:9:27 | d3.sele ... ', 100) |
| autogenerated/Xss/DomBasedXss/d3.js:8:5:10:30 | d3.sele ...  'red') |
| autogenerated/Xss/DomBasedXss/d3.js:8:5:11:25 | d3.sele ... aint()) |
| autogenerated/Xss/DomBasedXss/d3.js:8:5:12:30 | d3.sele ... aint()) |
| autogenerated/Xss/DomBasedXss/d3.js:8:5:13:28 | d3.sele ... nction) |
| autogenerated/Xss/DomBasedXss/d3.js:8:5:13:28 | reflective call |
| autogenerated/Xss/DomBasedXss/d3.js:8:5:14:30 | d3.sele ... aint()) |
| autogenerated/Xss/DomBasedXss/d3.js:19:5:20:27 | selecti ...  'bar') |
| autogenerated/Xss/DomBasedXss/d3.js:19:5:21:25 | selecti ... aint()) |
| autogenerated/Xss/DomBasedXss/dates.js:9:17:9:69 | decodeU ... ing(1)) |
| autogenerated/Xss/DomBasedXss/dates.js:9:36:9:68 | window. ... ring(1) |
| autogenerated/Xss/DomBasedXss/dates.js:11:42:11:68 | dateFns ...  taint) |
| autogenerated/Xss/DomBasedXss/dates.js:12:42:12:71 | dateFns ...  taint) |
| autogenerated/Xss/DomBasedXss/dates.js:13:42:13:64 | dateFns ... (taint) |
| autogenerated/Xss/DomBasedXss/dates.js:13:42:13:70 | dateFns ... )(time) |
| autogenerated/Xss/DomBasedXss/dates.js:14:42:14:68 | dateFns ... , time) |
| autogenerated/Xss/DomBasedXss/dates.js:15:42:15:63 | dateFns ... t(time) |
| autogenerated/Xss/DomBasedXss/dates.js:15:42:15:70 | dateFns ... (taint) |
| autogenerated/Xss/DomBasedXss/dates.js:16:42:16:53 | moment(time) |
| autogenerated/Xss/DomBasedXss/dates.js:16:42:16:67 | moment( ... (taint) |
| autogenerated/Xss/DomBasedXss/dates.js:17:42:17:54 | moment(taint) |
| autogenerated/Xss/DomBasedXss/dates.js:17:42:17:63 | moment( ... ormat() |
| autogenerated/Xss/DomBasedXss/dates.js:18:42:18:64 | datefor ...  taint) |
| autogenerated/Xss/DomBasedXss/dates.js:21:42:21:52 | dayjs(time) |
| autogenerated/Xss/DomBasedXss/dates.js:21:42:21:66 | dayjs(t ... (taint) |
| autogenerated/Xss/DomBasedXss/dates.js:30:17:30:69 | decodeU ... ing(1)) |
| autogenerated/Xss/DomBasedXss/dates.js:30:36:30:68 | window. ... ring(1) |
| autogenerated/Xss/DomBasedXss/dates.js:37:42:37:82 | dateFns ...  taint) |
| autogenerated/Xss/DomBasedXss/dates.js:38:42:38:82 | luxon.f ...  taint) |
| autogenerated/Xss/DomBasedXss/dates.js:38:63:38:74 | luxon.date() |
| autogenerated/Xss/DomBasedXss/dates.js:39:42:39:84 | moment. ...  taint) |
| autogenerated/Xss/DomBasedXss/dates.js:39:64:39:76 | moment.date() |
| autogenerated/Xss/DomBasedXss/dates.js:40:42:40:82 | dayjs.f ...  taint) |
| autogenerated/Xss/DomBasedXss/dates.js:40:63:40:74 | dayjs.date() |
| autogenerated/Xss/DomBasedXss/dates.js:46:17:46:69 | decodeU ... ing(1)) |
| autogenerated/Xss/DomBasedXss/dates.js:46:36:46:68 | window. ... ring(1) |
| autogenerated/Xss/DomBasedXss/dates.js:48:42:48:55 | DateTime.now() |
| autogenerated/Xss/DomBasedXss/dates.js:48:42:48:72 | DateTim ... rs: 1}) |
| autogenerated/Xss/DomBasedXss/dates.js:48:42:48:88 | DateTim ... (taint) |
| autogenerated/Xss/DomBasedXss/dates.js:49:42:49:71 | new Dat ... e('fr') |
| autogenerated/Xss/DomBasedXss/dates.js:49:42:49:87 | new Dat ... (taint) |
| autogenerated/Xss/DomBasedXss/dates.js:50:42:50:71 | DateTim ... 01-01") |
| autogenerated/Xss/DomBasedXss/dates.js:50:42:50:86 | DateTim ... ('day') |
| autogenerated/Xss/DomBasedXss/dates.js:50:42:50:102 | DateTim ... (taint) |
| autogenerated/Xss/DomBasedXss/dates.js:54:17:54:69 | decodeU ... ing(1)) |
| autogenerated/Xss/DomBasedXss/dates.js:54:36:54:68 | window. ... ring(1) |
| autogenerated/Xss/DomBasedXss/dates.js:57:42:57:85 | moment. ... 1"), 1) |
| autogenerated/Xss/DomBasedXss/dates.js:57:42:57:99 | moment. ... (taint) |
| autogenerated/Xss/DomBasedXss/dates.js:57:57:57:81 | moment. ... 06-21") |
| autogenerated/Xss/DomBasedXss/dates.js:59:42:59:69 | luxon.e ... date()) |
| autogenerated/Xss/DomBasedXss/dates.js:59:42:59:85 | luxon.e ... (taint) |
| autogenerated/Xss/DomBasedXss/dates.js:59:57:59:68 | luxon.date() |
| autogenerated/Xss/DomBasedXss/dates.js:61:42:61:72 | dayjs.s ... e(), 4) |
| autogenerated/Xss/DomBasedXss/dates.js:61:42:61:86 | dayjs.s ... (taint) |
| autogenerated/Xss/DomBasedXss/dates.js:61:57:61:68 | dayjs.date() |
| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:1:1:9 | $("#foo") |
| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:1:1:1:26 | $("#foo ... , drop) |
| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:7:18:7:51 | dataTra ... plain') |
| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:8:18:8:50 | dataTra ... /html') |
| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:11:5:11:22 | e.preventDefault() |
| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:13:17:13:45 | documen ... ('div') |
| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:19:5:19:29 | documen ... nd(div) |
| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:23:5:25:6 | el.addE ... \\n    }) |
| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:24:9:24:16 | $("#id") |
| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:24:9:24:58 | $("#id" ... html')) |
| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:24:23:24:57 | e.dataT ... /html') |
| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:28:1:30:2 | documen ... T OK\\n}) |
| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:29:5:29:12 | $("#id") |
| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:29:5:29:54 | $("#id" ... html')) |
| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:29:19:29:53 | e.dataT ... /html') |
| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:1:32:9 | $("#foo") |
| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:32:1:34:2 | $("#foo ... T OK\\n}) |
| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:33:5:33:12 | $("#id") |
| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:33:5:33:68 | $("#id" ... html')) |
| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:33:19:33:67 | e.origi ... /html') |
| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:37:15:37:43 | documen ... ("div") |
| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:42:22:42:55 | dataTra ... plain') |
| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:43:22:43:54 | dataTra ... /html') |
| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:46:9:46:26 | e.preventDefault() |
| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:48:21:48:49 | documen ... ('div') |
| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:54:9:54:33 | documen ... nd(div) |
| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:70:9:70:50 | e.dataT ... /html') |
| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:71:27:71:61 | e.dataT ... /html') |
| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:72:25:72:54 | documen ... 'html') |
| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:74:20:74:56 | contain ... ('img') |
| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:77:9:77:26 | dropItems.add(src) |
| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:79:16:79:58 | e.dataT ... plain') |
| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:80:25:80:60 | e.dataT ... plain') |
| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:82:11:82:41 | /^https ... inText) |
| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:83:9:83:32 | dropIte ... inText) |
| autogenerated/Xss/DomBasedXss/dragAndDrop.ts:87:24:87:44 | Array.f ... pItems) |
| autogenerated/Xss/DomBasedXss/encodeuri.js:3:3:3:58 | $('<a h ... k</a>') |
| autogenerated/Xss/DomBasedXss/encodeuri.js:3:19:3:41 | encodeU ... nt(loc) |
| autogenerated/Xss/DomBasedXss/event-handler-receiver.js:1:1:1:32 | documen ... my-id') |
| autogenerated/Xss/DomBasedXss/express.js:1:15:1:32 | require('express') |
| autogenerated/Xss/DomBasedXss/express.js:2:11:2:19 | express() |
| autogenerated/Xss/DomBasedXss/express.js:5:1:11:2 | app.get ...  });\\n}) |
| autogenerated/Xss/DomBasedXss/express.js:7:15:7:33 | req.param("wobble") |
| autogenerated/Xss/DomBasedXss/express.js:10:15:10:33 | req.param("wobble") |
| autogenerated/Xss/DomBasedXss/jquery.js:4:3:4:12 | $(tainted) |
| autogenerated/Xss/DomBasedXss/jquery.js:5:3:5:20 | $("body", tainted) |
| autogenerated/Xss/DomBasedXss/jquery.js:6:3:6:18 | $("." + tainted) |
| autogenerated/Xss/DomBasedXss/jquery.js:7:3:7:35 | $("<div ...  "\\">") |
| autogenerated/Xss/DomBasedXss/jquery.js:8:3:8:11 | $("body") |
| autogenerated/Xss/DomBasedXss/jquery.js:8:3:8:35 | $("body ... ainted) |
| autogenerated/Xss/DomBasedXss/jquery.js:9:3:9:25 | $(windo ... n.hash) |
| autogenerated/Xss/DomBasedXss/jquery.js:10:3:10:41 | $("<b>" ... "</b>") |
| autogenerated/Xss/DomBasedXss/jquery.js:10:13:10:31 | location.toString() |
| autogenerated/Xss/DomBasedXss/jquery.js:13:13:13:40 | documen ... Id('x') |
| autogenerated/Xss/DomBasedXss/jquery.js:14:19:14:58 | decodeU ... n.hash) |
| autogenerated/Xss/DomBasedXss/jquery.js:15:19:15:60 | decodeU ... search) |
| autogenerated/Xss/DomBasedXss/jquery.js:16:19:16:64 | decodeU ... ring()) |
| autogenerated/Xss/DomBasedXss/jquery.js:16:38:16:63 | window. ... tring() |
| autogenerated/Xss/DomBasedXss/jquery.js:19:3:19:9 | $(hash) |
| autogenerated/Xss/DomBasedXss/jquery.js:21:3:21:22 | $(hash.substring(1)) |
| autogenerated/Xss/DomBasedXss/jquery.js:21:5:21:21 | hash.substring(1) |
| autogenerated/Xss/DomBasedXss/jquery.js:22:3:22:26 | $(hash. ... 1, 10)) |
| autogenerated/Xss/DomBasedXss/jquery.js:22:5:22:25 | hash.su ... (1, 10) |
| autogenerated/Xss/DomBasedXss/jquery.js:23:3:23:19 | $(hash.substr(1)) |
| autogenerated/Xss/DomBasedXss/jquery.js:23:5:23:18 | hash.substr(1) |
| autogenerated/Xss/DomBasedXss/jquery.js:24:3:24:18 | $(hash.slice(1)) |
| autogenerated/Xss/DomBasedXss/jquery.js:24:5:24:17 | hash.slice(1) |
| autogenerated/Xss/DomBasedXss/jquery.js:25:3:25:26 | $(hash. ... 0, 10)) |
| autogenerated/Xss/DomBasedXss/jquery.js:25:5:25:25 | hash.su ... (0, 10) |
| autogenerated/Xss/DomBasedXss/jquery.js:27:3:27:26 | $(hash. ... ', '')) |
| autogenerated/Xss/DomBasedXss/jquery.js:27:5:27:25 | hash.re ... #', '') |
| autogenerated/Xss/DomBasedXss/jquery.js:28:3:28:44 | $(windo ... ', '')) |
| autogenerated/Xss/DomBasedXss/jquery.js:28:5:28:43 | window. ... ?', '') |
| autogenerated/Xss/DomBasedXss/jquery.js:29:3:29:26 | $(hash. ... ', '')) |
| autogenerated/Xss/DomBasedXss/jquery.js:29:5:29:25 | hash.re ... !', '') |
| autogenerated/Xss/DomBasedXss/jquery.js:30:3:30:29 | $(hash. ... ', '')) |
| autogenerated/Xss/DomBasedXss/jquery.js:30:5:30:28 | hash.re ... h', '') |
| autogenerated/Xss/DomBasedXss/jquery.js:32:3:32:18 | $(hash + 'blah') |
| autogenerated/Xss/DomBasedXss/jquery.js:33:3:33:18 | $('blah' + hash) |
| autogenerated/Xss/DomBasedXss/jquery.js:34:3:34:26 | $('<b>' ... '</b>') |
| autogenerated/Xss/DomBasedXss/jwt-server.js:1:15:1:32 | require('express') |
| autogenerated/Xss/DomBasedXss/jwt-server.js:2:11:2:19 | express() |
| autogenerated/Xss/DomBasedXss/jwt-server.js:6:1:13:2 | app.get ...  });\\n}) |
| autogenerated/Xss/DomBasedXss/jwt-server.js:7:17:7:35 | req.param("wobble") |
| autogenerated/Xss/DomBasedXss/jwt-server.js:9:5:12:6 | jwt.ver ... \\n    }) |
| autogenerated/Xss/DomBasedXss/jwt.js:4:1:7:2 | $.post( ... NCY]\\n}) |
| autogenerated/Xss/DomBasedXss/jwt.js:4:8:4:17 | loginUrl() |
| autogenerated/Xss/DomBasedXss/jwt.js:5:19:5:34 | jwt_decode(data) |
| autogenerated/Xss/DomBasedXss/jwt.js:6:5:6:21 | $.jGrowl(decoded) |
| autogenerated/Xss/DomBasedXss/nodemailer.js:1:18:1:38 | require ... ailer') |
| autogenerated/Xss/DomBasedXss/nodemailer.js:2:15:2:32 | require('express') |
| autogenerated/Xss/DomBasedXss/nodemailer.js:3:11:3:19 | express() |
| autogenerated/Xss/DomBasedXss/nodemailer.js:4:15:4:34 | require('./backend') |
| autogenerated/Xss/DomBasedXss/nodemailer.js:6:1:15:2 | app.pos ...  });\\n}) |
| autogenerated/Xss/DomBasedXss/nodemailer.js:7:19:7:48 | nodemai ... ort({}) |
| autogenerated/Xss/DomBasedXss/nodemailer.js:8:3:14:4 | transpo ... OK\\n  }) |
| autogenerated/Xss/DomBasedXss/nodemailer.js:10:9:10:48 | backend ... ceiver) |
| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:3:4:11 | $('myId') |
| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:3:4:64 | $('myId ... target) |
| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:4:29:4:54 | DOMPuri ... target) |
| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:6:3:6:11 | $('myId') |
| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:6:3:6:24 | $('myId ... target) |
| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:9:3:9:11 | $('myId') |
| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:9:3:9:25 | $('myId ... ainted) |
| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:11:15:11:41 | DOMPuri ... ainted) |
| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:13:3:13:11 | $('myId') |
| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:13:3:13:25 | $('myId ... ainted) |
| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:17:5:17:13 | $('myId') |
| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:17:5:17:21 | $('myId').html(x) |
| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:19:11:19:31 | DOMPuri ... tize(x) |
| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:21:5:21:13 | $('myId') |
| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:21:5:21:21 | $('myId').html(x) |
| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:32:3:32:11 | $('myId') |
| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:32:3:32:26 | $('myId ... inted2) |
| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:3:36:11 | $('myId') |
| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:36:3:36:26 | $('myId ... inted2) |
| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:39:3:39:11 | $('myId') |
| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:39:3:39:26 | $('myId ... inted3) |
| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:3:43:11 | $('myId') |
| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:43:3:43:26 | $('myId ... inted3) |
| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:3:45:11 | $('myId') |
| autogenerated/Xss/DomBasedXss/optionalSanitizer.js:45:3:45:57 | $('myId ... target) |
| autogenerated/Xss/DomBasedXss/react-create-context.js:3:24:3:50 | createC ...  null}) |
| autogenerated/Xss/DomBasedXss/react-native.js:4:11:4:19 | express() |
| autogenerated/Xss/DomBasedXss/react-native.js:6:1:10:2 | app.get ... T OK\\n}) |
| autogenerated/Xss/DomBasedXss/react-native.js:7:17:7:33 | req.param("code") |
| autogenerated/Xss/DomBasedXss/react-use-context.js:5:12:5:32 | useCont ... ontext) |
| autogenerated/Xss/DomBasedXss/react-use-context.js:10:5:10:33 | root.ap ... w.name) |
| autogenerated/Xss/DomBasedXss/react-use-context.js:13:27:13:26 | super(...args) |
| autogenerated/Xss/DomBasedXss/react-use-context.js:16:9:16:37 | root.ap ... w.name) |
| autogenerated/Xss/DomBasedXss/react-use-state.js:4:29:4:49 | useStat ... w.name) |
| autogenerated/Xss/DomBasedXss/react-use-state.js:9:29:9:43 | useState('foo') |
| autogenerated/Xss/DomBasedXss/react-use-state.js:10:5:10:25 | setStat ... w.name) |
| autogenerated/Xss/DomBasedXss/react-use-state.js:15:29:15:43 | useState('foo') |
| autogenerated/Xss/DomBasedXss/react-use-state.js:16:5:16:31 | setStat ... w.name) |
| autogenerated/Xss/DomBasedXss/react-use-state.js:21:29:21:43 | useState('foo') |
| autogenerated/Xss/DomBasedXss/react-use-state.js:22:5:24:6 | setStat ... \\n    }) |
| autogenerated/Xss/DomBasedXss/react-use-state.js:25:5:25:31 | setStat ... w.name) |
| autogenerated/Xss/DomBasedXss/react-use-state.js:29:29:29:43 | useState('foo') |
| autogenerated/Xss/DomBasedXss/react-use-state.js:30:5:30:20 | setState('safe') |
| autogenerated/Xss/DomBasedXss/react-use-state.js:31:5:31:31 | setStat ...  safe') |
| autogenerated/Xss/DomBasedXss/sanitiser.js:3:12:3:23 | s.toString() |
| autogenerated/Xss/DomBasedXss/sanitiser.js:3:12:4:30 | s.toStr ... &amp;') |
| autogenerated/Xss/DomBasedXss/sanitiser.js:3:12:5:28 | s.toStr ... '&lt;') |
| autogenerated/Xss/DomBasedXss/sanitiser.js:3:12:6:28 | s.toStr ... '&gt;') |
| autogenerated/Xss/DomBasedXss/sanitiser.js:10:12:10:23 | s.toString() |
| autogenerated/Xss/DomBasedXss/sanitiser.js:10:12:11:30 | s.toStr ...  '%22') |
| autogenerated/Xss/DomBasedXss/sanitiser.js:10:12:12:30 | s.toStr ...  '%27') |
| autogenerated/Xss/DomBasedXss/sanitiser.js:17:13:17:36 | documen ... ement() |
| autogenerated/Xss/DomBasedXss/sanitiser.js:22:7:22:25 | regex.test(tainted) |
| autogenerated/Xss/DomBasedXss/sanitiser.js:27:8:27:26 | regex.test(tainted) |
| autogenerated/Xss/DomBasedXss/sanitiser.js:32:7:32:25 | regex.exec(tainted) |
| autogenerated/Xss/DomBasedXss/sanitiser.js:37:7:37:25 | regex.exec(tainted) |
| autogenerated/Xss/DomBasedXss/sanitiser.js:42:7:42:25 | regex.exec(tainted) |
| autogenerated/Xss/DomBasedXss/sanitiser.js:48:19:48:46 | tainted ... /g, '') |
| autogenerated/Xss/DomBasedXss/stored-xss.js:2:5:2:63 | session ... search) |
| autogenerated/Xss/DomBasedXss/stored-xss.js:3:5:3:59 | localSt ... search) |
| autogenerated/Xss/DomBasedXss/stored-xss.js:5:5:5:13 | $('myId') |
| autogenerated/Xss/DomBasedXss/stored-xss.js:5:5:5:53 | $('myId ... sion')) |
| autogenerated/Xss/DomBasedXss/stored-xss.js:5:20:5:52 | session ... ssion') |
| autogenerated/Xss/DomBasedXss/stored-xss.js:6:5:6:13 | $('myId') |
| autogenerated/Xss/DomBasedXss/stored-xss.js:6:5:6:51 | $('myId ... sion')) |
| autogenerated/Xss/DomBasedXss/stored-xss.js:6:20:6:50 | localSt ... ssion') |
| autogenerated/Xss/DomBasedXss/stored-xss.js:7:5:7:13 | $('myId') |
| autogenerated/Xss/DomBasedXss/stored-xss.js:7:5:7:51 | $('myId ... ocal')) |
| autogenerated/Xss/DomBasedXss/stored-xss.js:7:20:7:50 | session ... local') |
| autogenerated/Xss/DomBasedXss/stored-xss.js:8:5:8:13 | $('myId') |
| autogenerated/Xss/DomBasedXss/stored-xss.js:8:5:8:49 | $('myId ... ocal')) |
| autogenerated/Xss/DomBasedXss/stored-xss.js:8:20:8:48 | localSt ... local') |
| autogenerated/Xss/DomBasedXss/stored-xss.js:10:16:10:44 | localSt ... local') |
| autogenerated/Xss/DomBasedXss/stored-xss.js:12:5:12:13 | $('myId') |
| autogenerated/Xss/DomBasedXss/stored-xss.js:12:5:12:55 | $('myId ... r</a>") |
| autogenerated/Xss/DomBasedXss/stored-xss.js:14:9:14:26 | href.indexOf("\\"") |
| autogenerated/Xss/DomBasedXss/stored-xss.js:17:5:17:13 | $('myId') |
| autogenerated/Xss/DomBasedXss/stored-xss.js:17:5:17:46 | $('myId ... + "/>") |
| autogenerated/Xss/DomBasedXss/stored-xss.js:19:17:19:45 | localSt ... local') |
| autogenerated/Xss/DomBasedXss/stored-xss.js:20:9:20:27 | href2.indexOf("\\"") |
| autogenerated/Xss/DomBasedXss/stored-xss.js:23:5:23:13 | $('myId') |
| autogenerated/Xss/DomBasedXss/stored-xss.js:23:5:23:58 | $('myId ... r</a>") |
| autogenerated/Xss/DomBasedXss/stored-xss.js:25:17:25:45 | localSt ... local') |
| autogenerated/Xss/DomBasedXss/stored-xss.js:26:9:26:27 | href3.indexOf("\\"") |
| autogenerated/Xss/DomBasedXss/stored-xss.js:29:5:29:13 | $('myId') |
| autogenerated/Xss/DomBasedXss/stored-xss.js:29:5:29:74 | $('myId ... '</a>') |
| autogenerated/Xss/DomBasedXss/string-manipulations.js:1:1:1:52 | documen ... eAt(0)) |
| autogenerated/Xss/DomBasedXss/string-manipulations.js:1:16:1:51 | documen ... deAt(0) |
| autogenerated/Xss/DomBasedXss/string-manipulations.js:3:1:3:33 | documen ... cation) |
| autogenerated/Xss/DomBasedXss/string-manipulations.js:4:1:4:38 | documen ... n.href) |
| autogenerated/Xss/DomBasedXss/string-manipulations.js:5:1:5:48 | documen ... ueOf()) |
| autogenerated/Xss/DomBasedXss/string-manipulations.js:5:16:5:47 | documen ... lueOf() |
| autogenerated/Xss/DomBasedXss/string-manipulations.js:6:1:6:44 | documen ... .sup()) |
| autogenerated/Xss/DomBasedXss/string-manipulations.js:6:16:6:43 | documen ... f.sup() |
| autogenerated/Xss/DomBasedXss/string-manipulations.js:7:1:7:52 | documen ... Case()) |
| autogenerated/Xss/DomBasedXss/string-manipulations.js:7:16:7:51 | documen ... rCase() |
| autogenerated/Xss/DomBasedXss/string-manipulations.js:8:1:8:49 | documen ... Left()) |
| autogenerated/Xss/DomBasedXss/string-manipulations.js:8:16:8:48 | documen ... mLeft() |
| autogenerated/Xss/DomBasedXss/string-manipulations.js:9:1:9:59 | documen ... .href)) |
| autogenerated/Xss/DomBasedXss/string-manipulations.js:9:16:9:58 | String. ... n.href) |
| autogenerated/Xss/DomBasedXss/string-manipulations.js:10:1:10:46 | documen ... .href)) |
| autogenerated/Xss/DomBasedXss/string-manipulations.js:10:16:10:45 | String( ... n.href) |
| autogenerated/Xss/DomBasedXss/string-manipulations.js:11:1:11:46 | documen ... .href)) |
| autogenerated/Xss/DomBasedXss/string-manipulations.js:11:16:11:45 | escape( ... n.href) |
| autogenerated/Xss/DomBasedXss/string-manipulations.js:12:1:12:62 | documen ... ref)))) |
| autogenerated/Xss/DomBasedXss/string-manipulations.js:12:16:12:61 | escape( ... href))) |
| autogenerated/Xss/DomBasedXss/string-manipulations.js:12:23:12:60 | escape( ... .href)) |
| autogenerated/Xss/DomBasedXss/string-manipulations.js:12:30:12:59 | escape( ... n.href) |
| autogenerated/Xss/DomBasedXss/translate.js:7:42:7:60 | target.substring(1) |
| autogenerated/Xss/DomBasedXss/translate.js:9:3:9:20 | $('original-term') |
| autogenerated/Xss/DomBasedXss/translate.js:9:3:9:51 | $('orig ... term')) |
| autogenerated/Xss/DomBasedXss/translate.js:9:27:9:50 | searchP ... 'term') |
| autogenerated/Xss/DomBasedXss/translate.js:11:3:11:22 | $('translated-term') |
| autogenerated/Xss/DomBasedXss/translate.js:11:3:11:64 | $('tran ... erm')]) |
| autogenerated/Xss/DomBasedXss/translate.js:11:39:11:62 | searchP ... 'term') |
| autogenerated/Xss/DomBasedXss/trusted-types.js:2:21:2:74 | trusted ... => x }) |
| autogenerated/Xss/DomBasedXss/trusted-types.js:3:5:3:35 | policy1 ... w.name) |
| autogenerated/Xss/DomBasedXss/trusted-types.js:5:21:5:79 | trusted ... afe' }) |
| autogenerated/Xss/DomBasedXss/trusted-types.js:6:5:6:35 | policy2 ... w.name) |
| autogenerated/Xss/DomBasedXss/trusted-types.js:8:21:8:74 | trusted ... => x }) |
| autogenerated/Xss/DomBasedXss/trusted-types.js:9:5:9:30 | policy3 ... 'safe') |
| autogenerated/Xss/DomBasedXss/tst3.js:1:11:1:40 | documen ... ("foo") |
| autogenerated/Xss/DomBasedXss/tst3.js:2:12:2:75 | JSON.pa ... tr(1))) |
| autogenerated/Xss/DomBasedXss/tst3.js:2:23:2:74 | decodeU ... str(1)) |
| autogenerated/Xss/DomBasedXss/tst3.js:2:42:2:73 | window. ... bstr(1) |
| autogenerated/Xss/DomBasedXss/tst3.js:4:1:4:33 | foo.set ... ta.src) |
| autogenerated/Xss/DomBasedXss/tst3.js:5:1:5:32 | foo.set ... data.p) |
| autogenerated/Xss/DomBasedXss/tst3.js:6:1:6:33 | foo.set ... data.w) |
| autogenerated/Xss/DomBasedXss/tst3.js:7:1:7:38 | foo.set ... data.p) |
| autogenerated/Xss/DomBasedXss/tst3.js:9:1:9:43 | foo.set ... data.p) |
| autogenerated/Xss/DomBasedXss/tst3.js:10:1:10:44 | foo.set ... data.p) |
| autogenerated/Xss/DomBasedXss/tst3.js:11:1:11:42 | foo.set ... data.w) |
| autogenerated/Xss/DomBasedXss/tst3.js:15:3:15:30 | foo.set ... ata[p]) |
| autogenerated/Xss/DomBasedXss/tst.js:5:3:5:11 | $('myId') |
| autogenerated/Xss/DomBasedXss/tst.js:5:3:5:24 | $('myId ... target) |
| autogenerated/Xss/DomBasedXss/tst.js:8:3:8:127 | documen ... TION>") |
| autogenerated/Xss/DomBasedXss/tst.js:8:37:8:114 | documen ... t=")+8) |
| autogenerated/Xss/DomBasedXss/tst.js:8:70:8:111 | documen ... ault=") |
| autogenerated/Xss/DomBasedXss/tst.js:9:3:9:52 | documen ... TION>") |
| autogenerated/Xss/DomBasedXss/tst.js:12:3:12:43 | $('<div ... 'px">') |
| autogenerated/Xss/DomBasedXss/tst.js:14:3:14:44 | $('<div ... 'px">') |
| autogenerated/Xss/DomBasedXss/tst.js:15:3:15:53 | $('<div ... 'px">') |
| autogenerated/Xss/DomBasedXss/tst.js:15:28:15:43 | parseInt(target) |
| autogenerated/Xss/DomBasedXss/tst.js:18:3:18:11 | $('name') |
| autogenerated/Xss/DomBasedXss/tst.js:18:3:18:36 | $('name ... name')) |
| autogenerated/Xss/DomBasedXss/tst.js:18:18:18:35 | params.get('name') |
| autogenerated/Xss/DomBasedXss/tst.js:20:42:20:60 | target.substring(1) |
| autogenerated/Xss/DomBasedXss/tst.js:21:3:21:11 | $('name') |
| autogenerated/Xss/DomBasedXss/tst.js:21:3:21:42 | $('name ... name')) |
| autogenerated/Xss/DomBasedXss/tst.js:21:18:21:41 | searchP ... 'name') |
| autogenerated/Xss/DomBasedXss/tst.js:26:3:26:11 | $('myId') |
| autogenerated/Xss/DomBasedXss/tst.js:26:3:26:24 | $('myId ... target) |
| autogenerated/Xss/DomBasedXss/tst.js:34:1:34:9 | $('myId') |
| autogenerated/Xss/DomBasedXss/tst.js:34:1:34:21 | $('myId ... (bar()) |
| autogenerated/Xss/DomBasedXss/tst.js:40:1:40:9 | $('myId') |
| autogenerated/Xss/DomBasedXss/tst.js:40:1:40:45 | $('myId ... earch)) |
| autogenerated/Xss/DomBasedXss/tst.js:46:1:46:9 | $('myId') |
| autogenerated/Xss/DomBasedXss/tst.js:46:1:46:46 | $('myId ... earch)) |
| autogenerated/Xss/DomBasedXss/tst.js:50:12:50:22 | s.substr(1) |
| autogenerated/Xss/DomBasedXss/tst.js:54:1:54:9 | $('myId') |
| autogenerated/Xss/DomBasedXss/tst.js:54:1:54:46 | $('myId ... earch)) |
| autogenerated/Xss/DomBasedXss/tst.js:56:1:56:9 | $('myId') |
| autogenerated/Xss/DomBasedXss/tst.js:56:1:56:46 | $('myId ... earch)) |
| autogenerated/Xss/DomBasedXss/tst.js:58:1:58:9 | $('myId') |
| autogenerated/Xss/DomBasedXss/tst.js:58:1:58:33 | $('myId ... ar()))) |
| autogenerated/Xss/DomBasedXss/tst.js:62:3:62:11 | $('myId') |
| autogenerated/Xss/DomBasedXss/tst.js:62:3:62:19 | $('myId').html(s) |
| autogenerated/Xss/DomBasedXss/tst.js:68:1:68:9 | $('myId') |
| autogenerated/Xss/DomBasedXss/tst.js:68:1:68:21 | $('myId ... (bar()) |
| autogenerated/Xss/DomBasedXss/tst.js:70:1:74:2 | [,docum ... (x);\\n}) |
| autogenerated/Xss/DomBasedXss/tst.js:73:5:73:13 | $('myId') |
| autogenerated/Xss/DomBasedXss/tst.js:73:5:73:21 | $('myId').html(x) |
| autogenerated/Xss/DomBasedXss/tst.js:79:1:79:27 | angular ... p', []) |
| autogenerated/Xss/DomBasedXss/tst.js:79:1:88:6 | angular ... \\n    }) |
| autogenerated/Xss/DomBasedXss/tst.js:79:1:92:6 | angular ... \\n    }) |
| autogenerated/Xss/DomBasedXss/tst.js:79:1:100:6 | angular ... \\n    }) |
| autogenerated/Xss/DomBasedXss/tst.js:79:1:104:6 | angular ... \\n    }) |
| autogenerated/Xss/DomBasedXss/tst.js:81:9:81:50 | $sce.tr ... search) |
| autogenerated/Xss/DomBasedXss/tst.js:82:9:82:49 | $sce.tr ... search) |
| autogenerated/Xss/DomBasedXss/tst.js:83:9:83:53 | $sce.tr ... search) |
| autogenerated/Xss/DomBasedXss/tst.js:84:9:84:57 | $sce.tr ... search) |
| autogenerated/Xss/DomBasedXss/tst.js:85:9:85:56 | $sce.tr ... search) |
| autogenerated/Xss/DomBasedXss/tst.js:86:9:86:55 | $sce.tr ... search) |
| autogenerated/Xss/DomBasedXss/tst.js:87:9:87:52 | $other. ... search) |
| autogenerated/Xss/DomBasedXss/tst.js:90:9:90:32 | angular ... <div>') |
| autogenerated/Xss/DomBasedXss/tst.js:90:9:90:63 | angular ... search) |
| autogenerated/Xss/DomBasedXss/tst.js:91:9:91:32 | angular ... <div>') |
| autogenerated/Xss/DomBasedXss/tst.js:91:9:91:45 | angular ... 'SAFE') |
| autogenerated/Xss/DomBasedXss/tst.js:96:17:96:54 | element ... search) |
| autogenerated/Xss/DomBasedXss/tst.js:97:17:97:36 | element.html('SAFE') |
| autogenerated/Xss/DomBasedXss/tst.js:102:9:102:49 | angular ... search) |
| autogenerated/Xss/DomBasedXss/tst.js:103:9:103:31 | angular ... 'SAFE') |
| autogenerated/Xss/DomBasedXss/tst.js:107:11:107:44 | documen ... bstr(1) |
| autogenerated/Xss/DomBasedXss/tst.js:110:3:110:19 | document.write(v) |
| autogenerated/Xss/DomBasedXss/tst.js:112:7:112:21 | /^\\d+$/.test(v) |
| autogenerated/Xss/DomBasedXss/tst.js:114:5:114:21 | document.write(v) |
| autogenerated/Xss/DomBasedXss/tst.js:117:12:117:26 | /^\\d+$/.exec(v) |
| autogenerated/Xss/DomBasedXss/tst.js:119:5:119:21 | document.write(v) |
| autogenerated/Xss/DomBasedXss/tst.js:122:7:122:22 | v.match(/^\\d+$/) |
| autogenerated/Xss/DomBasedXss/tst.js:124:7:124:23 | document.write(v) |
| autogenerated/Xss/DomBasedXss/tst.js:127:7:127:23 | v.match("^\\\\d+$") |
| autogenerated/Xss/DomBasedXss/tst.js:129:7:129:23 | document.write(v) |
| autogenerated/Xss/DomBasedXss/tst.js:132:9:132:21 | /\\d+/.test(v) |
| autogenerated/Xss/DomBasedXss/tst.js:136:3:136:19 | document.write(v) |
| autogenerated/Xss/DomBasedXss/tst.js:138:9:138:23 | /^\\d+$/.test(v) |
| autogenerated/Xss/DomBasedXss/tst.js:142:3:142:19 | document.write(v) |
| autogenerated/Xss/DomBasedXss/tst.js:146:5:146:31 | angular ... p', []) |
| autogenerated/Xss/DomBasedXss/tst.js:146:5:149:11 | angular ...     }]) |
| autogenerated/Xss/DomBasedXss/tst.js:146:5:152:10 | angular ...      }) |
| autogenerated/Xss/DomBasedXss/tst.js:146:5:156:11 | angular ...     }]) |
| autogenerated/Xss/DomBasedXss/tst.js:146:5:159:10 | angular ...      }) |
| autogenerated/Xss/DomBasedXss/tst.js:146:5:163:11 | angular ...     }]) |
| autogenerated/Xss/DomBasedXss/tst.js:146:5:166:10 | angular ...      }) |
| autogenerated/Xss/DomBasedXss/tst.js:146:5:170:11 | angular ...     }]) |
| autogenerated/Xss/DomBasedXss/tst.js:146:5:173:10 | angular ...      }) |
| autogenerated/Xss/DomBasedXss/tst.js:151:33:151:42 | $("<div>") |
| autogenerated/Xss/DomBasedXss/tst.js:151:33:151:50 | $("<div>").html(v) |
| autogenerated/Xss/DomBasedXss/tst.js:155:13:155:22 | $("<div>") |
| autogenerated/Xss/DomBasedXss/tst.js:155:13:155:47 | $("<div ... vice()) |
| autogenerated/Xss/DomBasedXss/tst.js:165:33:165:42 | $("<div>") |
| autogenerated/Xss/DomBasedXss/tst.js:165:33:165:50 | $("<div>").html(v) |
| autogenerated/Xss/DomBasedXss/tst.js:169:13:169:22 | $("<div>") |
| autogenerated/Xss/DomBasedXss/tst.js:169:13:169:52 | $("<div ... vice()) |
| autogenerated/Xss/DomBasedXss/tst.js:180:5:180:53 | parser. ... n/xml") |
| autogenerated/Xss/DomBasedXss/tst.js:188:5:188:28 | documen ... ement() |
| autogenerated/Xss/DomBasedXss/tst.js:189:5:189:19 | createElement() |
| autogenerated/Xss/DomBasedXss/tst.js:191:5:191:37 | documen ... sName() |
| autogenerated/Xss/DomBasedXss/tst.js:192:5:192:28 | getElem ... sName() |
| autogenerated/Xss/DomBasedXss/tst.js:193:5:193:28 | getElem ... sName() |
| autogenerated/Xss/DomBasedXss/tst.js:193:5:193:35 | getElem ... .item() |
| autogenerated/Xss/DomBasedXss/tst.js:199:5:199:76 | React.c ... nted}}) |
| autogenerated/Xss/DomBasedXss/tst.js:200:5:200:30 | React.c ... ("div") |
| autogenerated/Xss/DomBasedXss/tst.js:200:5:200:76 | React.c ... nted}}) |
| autogenerated/Xss/DomBasedXss/tst.js:205:37:205:46 | dbLookup() |
| autogenerated/Xss/DomBasedXss/tst.js:206:13:206:56 | this.se ... ted })) |
| autogenerated/Xss/DomBasedXss/tst.js:212:13:212:21 | $('myId') |
| autogenerated/Xss/DomBasedXss/tst.js:212:13:212:47 | $('myId ... inted1) |
| autogenerated/Xss/DomBasedXss/tst.js:213:13:213:21 | $('myId') |
| autogenerated/Xss/DomBasedXss/tst.js:213:13:213:47 | $('myId ... inted2) |
| autogenerated/Xss/DomBasedXss/tst.js:214:13:214:21 | $('myId') |
| autogenerated/Xss/DomBasedXss/tst.js:214:13:214:47 | $('myId ... inted3) |
| autogenerated/Xss/DomBasedXss/tst.js:215:13:215:21 | $('myId') |
| autogenerated/Xss/DomBasedXss/tst.js:215:13:215:49 | $('myId ... ainted) |
| autogenerated/Xss/DomBasedXss/tst.js:217:13:219:14 | this.se ...      }) |
| autogenerated/Xss/DomBasedXss/tst.js:218:17:218:25 | $('myId') |
| autogenerated/Xss/DomBasedXss/tst.js:218:17:218:50 | $('myId ... inted4) |
| autogenerated/Xss/DomBasedXss/tst.js:223:38:223:37 | super(...args) |
| autogenerated/Xss/DomBasedXss/tst.js:225:13:225:21 | $('myId') |
| autogenerated/Xss/DomBasedXss/tst.js:225:13:225:47 | $('myId ... inted1) |
| autogenerated/Xss/DomBasedXss/tst.js:226:13:226:21 | $('myId') |
| autogenerated/Xss/DomBasedXss/tst.js:226:13:226:47 | $('myId ... inted2) |
| autogenerated/Xss/DomBasedXss/tst.js:227:13:227:21 | $('myId') |
| autogenerated/Xss/DomBasedXss/tst.js:227:13:227:47 | $('myId ... inted3) |
| autogenerated/Xss/DomBasedXss/tst.js:228:13:228:21 | $('myId') |
| autogenerated/Xss/DomBasedXss/tst.js:228:13:228:49 | $('myId ... ainted) |
| autogenerated/Xss/DomBasedXss/tst.js:230:13:232:14 | this.se ...      }) |
| autogenerated/Xss/DomBasedXss/tst.js:231:17:231:25 | $('myId') |
| autogenerated/Xss/DomBasedXss/tst.js:231:17:231:50 | $('myId ... inted4) |
| autogenerated/Xss/DomBasedXss/tst.js:246:13:246:24 | super(props) |
| autogenerated/Xss/DomBasedXss/tst.js:259:5:259:18 | $(window.name) |
| autogenerated/Xss/DomBasedXss/tst.js:260:5:260:11 | $(name) |
| autogenerated/Xss/DomBasedXss/tst.js:264:9:264:22 | $(window.name) |
| autogenerated/Xss/DomBasedXss/tst.js:265:9:265:15 | $(name) |
| autogenerated/Xss/DomBasedXss/tst.js:270:5:270:15 | $(location) |
| autogenerated/Xss/DomBasedXss/tst.js:271:5:271:22 | $(window.location) |
| autogenerated/Xss/DomBasedXss/tst.js:272:5:272:24 | $(document.location) |
| autogenerated/Xss/DomBasedXss/tst.js:276:5:276:11 | $(loc1) |
| autogenerated/Xss/DomBasedXss/tst.js:277:5:277:11 | $(loc2) |
| autogenerated/Xss/DomBasedXss/tst.js:278:5:278:11 | $(loc3) |
| autogenerated/Xss/DomBasedXss/tst.js:280:5:280:13 | $("body") |
| autogenerated/Xss/DomBasedXss/tst.js:280:5:280:30 | $("body ... cation) |
| autogenerated/Xss/DomBasedXss/tst.js:286:17:286:38 | documen ... Range() |
| autogenerated/Xss/DomBasedXss/tst.js:287:5:287:66 | range.s ... tem(0)) |
| autogenerated/Xss/DomBasedXss/tst.js:287:22:287:57 | documen ... ("div") |
| autogenerated/Xss/DomBasedXss/tst.js:287:22:287:65 | documen ... item(0) |
| autogenerated/Xss/DomBasedXss/tst.js:288:28:288:66 | range.c ... ainted) |
| autogenerated/Xss/DomBasedXss/tst.js:289:5:289:47 | documen ... agment) |
| autogenerated/Xss/DomBasedXss/tst.js:294:9:294:21 | Math.random() |
| autogenerated/Xss/DomBasedXss/tst.js:296:7:296:10 | $(p) |
| autogenerated/Xss/DomBasedXss/tst.js:303:3:303:11 | $("body") |
| autogenerated/Xss/DomBasedXss/tst.js:303:3:303:21 | $("body").append(e) |
| autogenerated/Xss/DomBasedXss/tst.js:311:3:311:11 | $("body") |
| autogenerated/Xss/DomBasedXss/tst.js:311:3:311:21 | $("body").append(e) |
| autogenerated/Xss/DomBasedXss/tst.js:323:3:323:11 | $('myId') |
| autogenerated/Xss/DomBasedXss/tst.js:323:3:323:31 | $('myId ... length) |
| autogenerated/Xss/DomBasedXss/tst.js:332:3:332:11 | $('name') |
| autogenerated/Xss/DomBasedXss/tst.js:332:3:332:36 | $('name ... name')) |
| autogenerated/Xss/DomBasedXss/tst.js:332:18:332:35 | params.get('name') |
| autogenerated/Xss/DomBasedXss/tst.js:335:3:335:11 | $('name') |
| autogenerated/Xss/DomBasedXss/tst.js:335:3:335:35 | $('name ... name')) |
| autogenerated/Xss/DomBasedXss/tst.js:335:18:335:34 | myUrl.get('name') |
| autogenerated/Xss/DomBasedXss/tst.js:343:3:343:31 | $(getUr ... ing(1)) |
| autogenerated/Xss/DomBasedXss/tst.js:343:5:343:30 | getUrl( ... ring(1) |
| autogenerated/Xss/DomBasedXss/tst.js:349:3:349:18 | $.jGrowl(target) |
| autogenerated/Xss/DomBasedXss/tst.js:356:6:356:22 | this.html(target) |
| autogenerated/Xss/DomBasedXss/tst.js:359:3:364:4 | this.ea ... K.\\n\\t\\t}) |
| autogenerated/Xss/DomBasedXss/tst.js:361:4:361:20 | this.html(target) |
| autogenerated/Xss/DomBasedXss/tst.js:374:3:374:11 | $('myId') |
| autogenerated/Xss/DomBasedXss/tst.js:374:3:374:24 | $('myId ... target) |
| autogenerated/Xss/DomBasedXss/tst.js:377:3:377:11 | $('myid') |
| autogenerated/Xss/DomBasedXss/tst.js:377:3:377:54 | $('myid ... ?")[0]) |
| autogenerated/Xss/DomBasedXss/tst.js:377:18:377:50 | documen ... it("?") |
| autogenerated/Xss/DomBasedXss/tst.js:384:3:384:11 | $('myId') |
| autogenerated/Xss/DomBasedXss/tst.js:384:3:384:24 | $('myId ... target) |
| autogenerated/Xss/DomBasedXss/tst.js:386:3:386:11 | $('myId') |
| autogenerated/Xss/DomBasedXss/tst.js:386:3:386:30 | $('myId ... .taint) |
| autogenerated/Xss/DomBasedXss/tst.js:389:3:389:11 | $('myId') |
| autogenerated/Xss/DomBasedXss/tst.js:389:3:389:31 | $('myId ... taint2) |
| autogenerated/Xss/DomBasedXss/tst.js:392:3:392:11 | $('myId') |
| autogenerated/Xss/DomBasedXss/tst.js:392:3:392:31 | $('myId ... taint3) |
| autogenerated/Xss/DomBasedXss/tst.js:395:3:395:11 | $('myId') |
| autogenerated/Xss/DomBasedXss/tst.js:395:3:395:35 | $('myId ... taint4) |
| autogenerated/Xss/DomBasedXss/tst.js:397:3:397:11 | $('myId') |
| autogenerated/Xss/DomBasedXss/tst.js:397:3:397:31 | $('myId ... taint5) |
| autogenerated/Xss/DomBasedXss/tst.js:401:7:401:14 | random() |
| autogenerated/Xss/DomBasedXss/tst.js:402:3:402:11 | $('myId') |
| autogenerated/Xss/DomBasedXss/tst.js:402:3:402:31 | $('myId ... taint6) |
| autogenerated/Xss/DomBasedXss/tst.js:405:7:405:14 | random() |
| autogenerated/Xss/DomBasedXss/tst.js:406:3:406:11 | $('myId') |
| autogenerated/Xss/DomBasedXss/tst.js:406:3:406:31 | $('myId ... taint7) |
| autogenerated/Xss/DomBasedXss/tst.js:409:3:409:11 | $('myId') |
| autogenerated/Xss/DomBasedXss/tst.js:409:3:409:31 | $('myId ... taint8) |
| autogenerated/Xss/DomBasedXss/tst.js:412:3:412:11 | $('myId') |
| autogenerated/Xss/DomBasedXss/tst.js:412:3:412:31 | $('myId ... taint9) |
| autogenerated/Xss/DomBasedXss/tst.js:416:17:416:46 | window. ... bstr(1) |
| autogenerated/Xss/DomBasedXss/tst.js:417:3:417:25 | documen ... ayload) |
| autogenerated/Xss/DomBasedXss/tst.js:419:15:419:55 | window. ... (\\w+)/) |
| autogenerated/Xss/DomBasedXss/tst.js:421:5:421:28 | documen ... tch[1]) |
| autogenerated/Xss/DomBasedXss/tst.js:424:3:424:52 | documen ... #')[1]) |
| autogenerated/Xss/DomBasedXss/tst.js:424:18:424:48 | window. ... it('#') |
| autogenerated/Xss/DomBasedXss/tst.js:430:3:430:11 | $("#foo") |
| autogenerated/Xss/DomBasedXss/tst.js:430:3:430:90 | $("#foo ... ata>')) |
| autogenerated/Xss/DomBasedXss/tst.js:430:18:430:89 | target. ... data>') |
| autogenerated/Xss/DomBasedXss/tst.js:432:3:432:11 | $("#foo") |
| autogenerated/Xss/DomBasedXss/tst.js:432:3:432:44 | $("#foo ... g, '')) |
| autogenerated/Xss/DomBasedXss/tst.js:432:18:432:43 | target. ... /g, '') |
| autogenerated/Xss/DomBasedXss/tst.js:441:2:441:39 | new Ele ... source) |
| autogenerated/Xss/DomBasedXss/tst.js:442:2:442:41 | new Ele ... ource}) |
| autogenerated/Xss/DomBasedXss/tst.js:443:2:443:47 | new Ele ... source) |
| autogenerated/Xss/DomBasedXss/tst.js:444:2:444:51 | new Ele ... ource}) |
| autogenerated/Xss/DomBasedXss/tst.js:445:2:445:38 | new Ele ... source) |
| autogenerated/Xss/DomBasedXss/tst.js:449:17:449:39 | require ... -html') |
| autogenerated/Xss/DomBasedXss/tst.js:455:3:455:11 | $("#foo") |
| autogenerated/Xss/DomBasedXss/tst.js:455:3:455:24 | $("#foo ... source) |
| autogenerated/Xss/DomBasedXss/tst.js:456:3:456:11 | $("#foo") |
| autogenerated/Xss/DomBasedXss/tst.js:456:3:456:43 | $("#foo ... ource)) |
| autogenerated/Xss/DomBasedXss/tst.js:456:18:456:42 | ansiToH ... source) |
| autogenerated/Xss/DomBasedXss/tst.js:462:15:462:48 | documen ... table') |
| autogenerated/Xss/DomBasedXss/tst.js:464:13:464:31 | table.insertRow(-1) |
| autogenerated/Xss/DomBasedXss/tst.js:466:14:466:29 | row.insertCell() |
| autogenerated/Xss/DomBasedXss/tst.js:471:13:471:46 | documen ... bstr(1) |
| autogenerated/Xss/DomBasedXss/tst.js:473:3:473:23 | $("<a>" ... : url}) |
| autogenerated/Xss/DomBasedXss/tst.js:473:3:473:40 | $("<a>" ... "body") |
| autogenerated/Xss/DomBasedXss/tst.js:474:3:474:11 | $("#foo") |
| autogenerated/Xss/DomBasedXss/tst.js:474:3:474:29 | $("#foo ... ", url) |
| autogenerated/Xss/DomBasedXss/tst.js:475:3:475:11 | $("#foo") |
| autogenerated/Xss/DomBasedXss/tst.js:475:3:475:29 | $("#foo ... : url}) |
| autogenerated/Xss/DomBasedXss/tst.js:476:3:476:24 | $("<img ... : url}) |
| autogenerated/Xss/DomBasedXss/tst.js:476:3:476:41 | $("<img ... "body") |
| autogenerated/Xss/DomBasedXss/tst.js:477:3:477:37 | $("<a>" ... .href}) |
| autogenerated/Xss/DomBasedXss/tst.js:477:3:477:54 | $("<a>" ... "body") |
| autogenerated/Xss/DomBasedXss/tst.js:479:3:479:47 | $("<img ... + url}) |
| autogenerated/Xss/DomBasedXss/tst.js:479:3:479:64 | $("<img ... "body") |
| autogenerated/Xss/DomBasedXss/tst.js:481:3:481:57 | $("<img ... ("/")}) |
| autogenerated/Xss/DomBasedXss/tst.js:481:3:481:74 | $("<img ... "body") |
| autogenerated/Xss/DomBasedXss/tst.js:481:20:481:55 | ["http: ... in("/") |
| autogenerated/Xss/DomBasedXss/tst.js:483:7:483:32 | url.sta ... ps://") |
| autogenerated/Xss/DomBasedXss/tst.js:484:5:484:26 | $("<img ... : url}) |
| autogenerated/Xss/DomBasedXss/tst.js:484:5:484:43 | $("<img ... "body") |
| autogenerated/Xss/DomBasedXss/tst.js:486:5:486:26 | $("<img ... : url}) |
| autogenerated/Xss/DomBasedXss/tst.js:486:5:486:43 | $("<img ... "body") |
| autogenerated/Xss/DomBasedXss/tst.js:489:3:489:38 | window. ... str(1)) |
| autogenerated/Xss/DomBasedXss/tst.js:489:15:489:37 | locatio ... bstr(1) |
| autogenerated/Xss/DomBasedXss/tst.js:491:3:491:46 | navigat ... str(1)) |
| autogenerated/Xss/DomBasedXss/tst.js:491:23:491:45 | locatio ... bstr(1) |
| autogenerated/Xss/DomBasedXss/typeahead.js:5:3:5:28 | autocom ... alize() |
| autogenerated/Xss/DomBasedXss/typeahead.js:6:3:6:17 | $('.typeahead') |
| autogenerated/Xss/DomBasedXss/typeahead.js:6:3:13:4 | $('.typ ...  }\\n  }) |
| autogenerated/Xss/DomBasedXss/typeahead.js:7:13:7:37 | autocom ... apter() |
| autogenerated/Xss/DomBasedXss/typeahead.js:16:3:16:17 | $('.typeahead') |
| autogenerated/Xss/DomBasedXss/typeahead.js:16:3:29:3 | $('.typ ...   }\\n  ) |
| autogenerated/Xss/DomBasedXss/typeahead.js:21:9:21:18 | cb(target) |
| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:4:2:4:32 | $("<div ... /div>") |
| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:5:2:5:27 | $(`<div ... /div>`) |
| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:2:6:44 | $("<div ... div>")) |
| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:4:6:26 | "<div>" ... ainted) |
| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:6:4:6:43 | "<div>" ... /div>") |
| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:2:7:39 | $(["<di ... join()) |
| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:7:4:7:38 | ["<div> ... .join() |
| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:9:2:9:35 | $("<div ... "\\"/>") |
| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:10:2:10:28 | $(`<div ... d}"/>`) |
| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:2:11:45 | $("<div ... ("/>")) |
| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:4:11:31 | "<div i ... ainted) |
| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:11:4:11:44 | "<div i ... t("/>") |
| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:2:12:42 | $(["<di ... join()) |
| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:12:4:12:41 | ["<div  ... .join() |
| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:10:18:59 | '<div a ... 'left') |
| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:10:18:88 | '<div a ... ntent)) |
| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:10:18:105 | '<div a ... /div>') |
| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:18:68:18:87 | '">'.concat(content) |
| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:20:2:20:48 | $(indir ... attrs)) |
| autogenerated/Xss/DomBasedXss/various-concat-obfuscations.js:21:2:21:48 | $(indir ... attrs)) |
| autogenerated/Xss/DomBasedXss/winjs.js:2:17:2:53 | documen ... ring(1) |
| autogenerated/Xss/DomBasedXss/winjs.js:3:3:3:50 | WinJS.U ... ainted) |
| autogenerated/Xss/DomBasedXss/winjs.js:4:3:4:50 | WinJS.U ... ainted) |
| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:1:1:11 | $(document) |
| autogenerated/Xss/DomBasedXss/xmlRequest.js:1:1:16:2 | $(docum ...    }\\n}) |
| autogenerated/Xss/DomBasedXss/xmlRequest.js:4:5:4:30 | xhr.ope ... , true) |
| autogenerated/Xss/DomBasedXss/xmlRequest.js:5:5:5:60 | xhr.set ... /json") |
| autogenerated/Xss/DomBasedXss/xmlRequest.js:8:20:8:47 | JSON.pa ... seText) |
| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:9:9:21 | $("#myThing") |
| autogenerated/Xss/DomBasedXss/xmlRequest.js:9:9:9:40 | $("#myT ... essage) |
| autogenerated/Xss/DomBasedXss/xmlRequest.js:12:9:12:18 | xhr.send() |
| autogenerated/Xss/DomBasedXss/xmlRequest.js:14:9:14:26 | console.log(error) |
| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:1:18:11 | $(document) |
| autogenerated/Xss/DomBasedXss/xmlRequest.js:18:1:24:2 | $(docum ... ces\\n\\n}) |
| autogenerated/Xss/DomBasedXss/xmlRequest.js:19:17:19:30 | require('got') |
| autogenerated/Xss/DomBasedXss/xmlRequest.js:20:24:20:48 | got.get ... rl }}") |
| autogenerated/Xss/DomBasedXss/xmlRequest.js:21:18:21:38 | JSON.pa ... p.body) |
| autogenerated/Xss/DomBasedXss/xmlRequest.js:22:5:22:17 | $("#myThing") |
| autogenerated/Xss/DomBasedXss/xmlRequest.js:22:5:22:36 | $("#myT ... essage) |
| autogenerated/Xss/ExceptionXss/ajv.js:4:11:4:19 | express() |
| autogenerated/Xss/ExceptionXss/ajv.js:7:1:7:83 | ajv.add ... lData') |
| autogenerated/Xss/ExceptionXss/ajv.js:9:1:13:2 | app.pos ...    }\\n}) |
| autogenerated/Xss/ExceptionXss/ajv.js:10:10:10:43 | ajv.val ... q.body) |
| autogenerated/Xss/ExceptionXss/ajv.js:11:9:11:34 | res.sen ... Text()) |
| autogenerated/Xss/ExceptionXss/ajv.js:11:18:11:33 | ajv.errorsText() |
| autogenerated/Xss/ExceptionXss/ajv.js:15:13:15:26 | require("joi") |
| autogenerated/Xss/ExceptionXss/ajv.js:16:19:16:30 | joi.object() |
| autogenerated/Xss/ExceptionXss/ajv.js:16:19:19:2 | joi.obj ... ed()\\n}) |
| autogenerated/Xss/ExceptionXss/ajv.js:16:19:19:22 | joi.obj ...  'age') |
| autogenerated/Xss/ExceptionXss/ajv.js:17:11:17:22 | joi.string() |
| autogenerated/Xss/ExceptionXss/ajv.js:17:11:17:33 | joi.str ... uired() |
| autogenerated/Xss/ExceptionXss/ajv.js:18:10:18:21 | joi.number() |
| autogenerated/Xss/ExceptionXss/ajv.js:18:10:18:32 | joi.num ... uired() |
| autogenerated/Xss/ExceptionXss/ajv.js:21:1:26:2 | app.pos ...    }\\n}) |
| autogenerated/Xss/ExceptionXss/ajv.js:22:17:22:44 | joiSche ... q.body) |
| autogenerated/Xss/ExceptionXss/ajv.js:24:9:24:27 | res.send(val.error) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:5:3:5:12 | unknown(x) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:9:3:9:14 | unknown(foo) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:11:3:11:11 | $('myId') |
| autogenerated/Xss/ExceptionXss/exception-xss.js:11:3:11:19 | $('myId').html(e) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:17:3:17:11 | $('myId') |
| autogenerated/Xss/ExceptionXss/exception-xss.js:17:3:17:19 | $('myId').html(e) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:21:3:21:22 | unknown(foo + "bar") |
| autogenerated/Xss/ExceptionXss/exception-xss.js:23:3:23:11 | $('myId') |
| autogenerated/Xss/ExceptionXss/exception-xss.js:23:3:23:19 | $('myId').html(e) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:27:3:27:24 | unknown ...  foo }) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:29:3:29:11 | $('myId') |
| autogenerated/Xss/ExceptionXss/exception-xss.js:29:3:29:19 | $('myId').html(e) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:33:3:33:23 | unknown ... , foo]) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:35:3:35:11 | $('myId') |
| autogenerated/Xss/ExceptionXss/exception-xss.js:35:3:35:19 | $('myId').html(e) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:48:3:48:11 | $('myId') |
| autogenerated/Xss/ExceptionXss/exception-xss.js:48:3:48:19 | $('myId').html(e) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:54:3:54:11 | $('myId') |
| autogenerated/Xss/ExceptionXss/exception-xss.js:54:3:54:19 | $('myId').html(e) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:64:3:64:11 | $('myId') |
| autogenerated/Xss/ExceptionXss/exception-xss.js:64:3:64:19 | $('myId').html(e) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:68:3:68:22 | safe.call(null, foo) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:70:3:70:11 | $('myId') |
| autogenerated/Xss/ExceptionXss/exception-xss.js:70:3:70:19 | $('myId').html(e) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:78:3:78:11 | $('myId') |
| autogenerated/Xss/ExceptionXss/exception-xss.js:78:3:78:19 | $('myId').html(e) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:83:3:83:11 | $('myId') |
| autogenerated/Xss/ExceptionXss/exception-xss.js:83:3:83:19 | $('myId').html(e) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:86:2:86:10 | $('myId') |
| autogenerated/Xss/ExceptionXss/exception-xss.js:86:2:86:20 | $('myId').html(foo) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:89:3:89:27 | unknown ... /foo/)) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:89:11:89:26 | foo.match(/foo/) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:91:3:91:11 | $('myId') |
| autogenerated/Xss/ExceptionXss/exception-xss.js:91:3:91:19 | $('myId').html(e) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:95:3:95:23 | unknown ... "bar"]) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:97:3:97:11 | $('myId') |
| autogenerated/Xss/ExceptionXss/exception-xss.js:97:3:97:19 | $('myId').html(e) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:102:4:102:15 | unknown(foo) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:107:3:107:11 | $('myId') |
| autogenerated/Xss/ExceptionXss/exception-xss.js:107:3:107:19 | $('myId').html(e) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:111:15:111:32 | require('express') |
| autogenerated/Xss/ExceptionXss/exception-xss.js:113:11:113:19 | express() |
| autogenerated/Xss/ExceptionXss/exception-xss.js:115:1:121:2 | app.get ... !\\n\\t}\\n}) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:117:3:117:24 | unknown ... ams.id) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:119:3:119:29 | res.sen ...  " + e) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:125:2:125:69 | session ... search) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:128:3:128:53 | unknown ... sion')) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:128:11:128:52 | session ... ssion') |
| autogenerated/Xss/ExceptionXss/exception-xss.js:130:3:130:11 | $('myId') |
| autogenerated/Xss/ExceptionXss/exception-xss.js:130:3:130:19 | $('myId').html(e) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:135:1:143:2 | app.get ... \\t});\\n}) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:136:2:142:3 | unknown ... w?)\\n\\t}) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:138:4:138:12 | $('myId') |
| autogenerated/Xss/ExceptionXss/exception-xss.js:138:4:138:24 | $('myId ... (error) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:141:3:141:11 | $('myId') |
| autogenerated/Xss/ExceptionXss/exception-xss.js:141:3:141:21 | $('myId').html(res) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:148:2:150:3 | new Pro ...  OK\\n\\t}) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:148:25:148:45 | unknown ... esolve) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:149:3:149:11 | $('myId') |
| autogenerated/Xss/ExceptionXss/exception-xss.js:149:3:149:19 | $('myId').html(e) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:155:3:155:11 | $('myId') |
| autogenerated/Xss/ExceptionXss/exception-xss.js:155:3:155:19 | $('myId').html(e) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:159:3:159:11 | unknown() |
| autogenerated/Xss/ExceptionXss/exception-xss.js:161:3:161:11 | $('myId') |
| autogenerated/Xss/ExceptionXss/exception-xss.js:161:3:161:19 | $('myId').html(e) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:167:3:167:11 | $('myId') |
| autogenerated/Xss/ExceptionXss/exception-xss.js:167:3:167:19 | $('myId').html(e) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:171:3:171:27 | unknown ... esolve) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:174:2:176:3 | new Pro ...  OK\\n\\t}) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:175:3:175:11 | $('myId') |
| autogenerated/Xss/ExceptionXss/exception-xss.js:175:3:175:19 | $('myId').html(e) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:179:1:186:2 | app.get ... \\t});\\n}) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:180:2:185:3 | unknown ... n. \\n\\t}) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:182:4:182:12 | $('myId') |
| autogenerated/Xss/ExceptionXss/exception-xss.js:182:4:182:24 | $('myId ... (error) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:184:3:184:11 | $('myId') |
| autogenerated/Xss/ExceptionXss/exception-xss.js:184:3:184:21 | $('myId').html(res) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:188:1:194:2 | app.get ... )\\n\\t}\\n}) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:190:3:190:25 | res.sen ... ams.id) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:192:3:192:15 | res.send(err) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:196:10:196:22 | require("fs") |
| autogenerated/Xss/ExceptionXss/exception-xss.js:203:3:203:25 | Object. ... o, foo) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:204:3:204:18 | _.pick(foo, foo) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:205:3:205:23 | [foo, f ... n(join) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:206:3:206:12 | $.val(foo) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:207:3:207:17 | JSON.parse(foo) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:208:3:208:17 | /bla/.test(foo) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:209:3:209:18 | console.log(foo) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:210:3:210:15 | log.info(foo) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:211:3:211:27 | localSt ... em(foo) |
| autogenerated/Xss/ExceptionXss/exception-xss.js:213:3:213:11 | $('myId') |
| autogenerated/Xss/ExceptionXss/exception-xss.js:213:3:213:19 | $('myId').html(e) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:1:15:1:32 | require('express') |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:3:11:3:19 | express() |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:5:1:14:2 | app.get ... \\n  }\\n}) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:6:8:6:35 | isValid ... ams.id) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:8:5:8:46 | res.sen ... ams.id) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:17:3:17:40 | res.sen ... ams.id) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:20:14:20:30 | require("marked") |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:21:1:24:2 | app.get ... T OK\\n}) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:22:3:22:20 | res.send(req.body) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:23:3:23:28 | res.sen ... .body)) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:23:12:23:27 | marked(req.body) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:27:13:27:37 | require ... table') |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:28:1:35:2 | app.get ... T OK\\n}) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:29:3:29:20 | res.send(req.body) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:30:17:33:4 | table([ ... y]\\n  ]) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:34:3:34:19 | res.send(mytable) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:37:17:37:35 | require('showdown') |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:40:1:43:2 | app.get ... T OK\\n}) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:41:3:41:20 | res.send(req.body) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:42:3:42:40 | res.sen ... .body)) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:42:12:42:39 | convert ... q.body) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:45:15:45:32 | require('unified') |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:46:16:46:38 | require ... parse') |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:47:21:47:44 | require ... ehype') |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:48:11:48:36 | require ... ument') |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:49:14:49:37 | require ... ormat') |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:50:12:50:38 | require ... ngify') |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:51:14:51:30 | require("remark") |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:52:16:52:41 | require ... itize") |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:53:29:53:47 | require('showdown') |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:55:1:77:2 | app.get ...   })\\n}) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:56:3:56:20 | res.send(req.body) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:58:3:58:11 | unified() |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:58:3:59:18 | unified ... rkdown) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:58:3:60:23 | unified ... rehype) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:58:3:61:32 | unified ... \\udc4b\\u1f30d\\udf0d' }) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:58:3:62:16 | unified ... format) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:58:3:63:14 | unified ... e(html) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:58:3:66:6 | unified ... \\n    }) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:65:7:65:20 | res.send(file) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:68:3:68:53 | res.sen ... ring()) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:68:12:68:19 | remark() |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:68:12:68:41 | remark( ... q.body) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:68:12:68:52 | remark( ... tring() |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:3:70:67 | res.sen ... ring()) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:12:70:19 | remark() |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:12:70:33 | remark( ... nitize) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:12:70:55 | remark( ... q.body) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:70:12:70:66 | remark( ... tring() |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:3:72:66 | res.sen ... String) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:12:72:20 | unified() |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:12:72:34 | unified ... rkdown) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:72:12:72:56 | unified ... q.body) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:74:3:74:10 | remark() |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:74:3:76:4 | remark( ... OK\\n  }) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:75:5:75:15 | res.send(f) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:80:18:80:37 | require("snarkdown") |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:82:1:86:2 | app.get ... T OK\\n}) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:83:3:83:20 | res.send(req.body) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:84:3:84:31 | res.sen ... .body)) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:84:12:84:30 | snarkdown(req.body) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:85:3:85:32 | res.sen ... .body)) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:85:12:85:31 | snarkdown2(req.body) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:20:88:41 | require ... wn-it') |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:88:20:90:2 | require ... true\\n}) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:21:91:42 | require ... wn-it') |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:91:21:91:46 | require ... t')({}) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:21:93:42 | require ... wn-it') |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:21:93:56 | require ...  true}) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:93:21:94:42 | require ... htjs')) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:94:8:94:41 | require ... ghtjs') |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:96:1:104:2 | app.get ... T OK\\n}) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:97:3:97:20 | res.send(req.body) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:98:3:98:39 | res.sen ... .body)) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:98:12:98:38 | markdow ... q.body) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:3:99:40 | res.sen ... .body)) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:99:12:99:39 | markdow ... q.body) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:100:3:100:40 | res.sen ... .body)) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:100:12:100:39 | markdow ... q.body) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:3:102:77 | res.sen ... .body)) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:12:102:59 | markdow ... izer')) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:12:102:76 | markdow ... q.body) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:102:27:102:58 | require ... tizer') |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:3:103:85 | res.sen ... .body)) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:12:103:54 | markdow ... abbr')) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:12:103:67 | markdow ... nknown) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:12:103:84 | markdow ... q.body) |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:103:27:103:53 | require ... -abbr') |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:106:12:106:26 | require('hapi') |
| autogenerated/Xss/ReflectedXss/ReflectedXss.js:108:1:111:7 | hapi.ro ...     }}) |
| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:1:15:1:32 | require('express') |
| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:2:11:2:19 | express() |
| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:4:1:12:2 | app.get ... \\n  }\\n}) |
| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:6:5:6:41 | res.set ... plain') |
| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:7:5:7:37 | res.sen ... ams.id) |
| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:9:5:9:40 | res.set ... /html') |
| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:10:5:10:37 | res.sen ... ams.id) |
| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:14:1:22:2 | app.get ... \\n  }\\n}) |
| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:16:5:16:60 | res.wri ... json'}) |
| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:17:5:17:37 | res.sen ... ams.id) |
| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:19:5:19:22 | res.writeHead(404) |
| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:20:5:20:37 | res.sen ... ams.id) |
| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:25:1:33:2 | app.get ... JSON\\n}) |
| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:26:3:26:58 | res.wri ... json'}) |
| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:28:5:28:37 | res.sen ... ams.id) |
| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:30:5:30:37 | res.sen ... ams.id) |
| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:32:3:32:35 | res.sen ... ams.id) |
| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:36:1:44:2 | app.get ... \\n  }\\n}) |
| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:39:5:39:36 | res.end ... ams.id) |
| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:41:5:41:60 | res.set ... =utf8') |
| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:42:5:42:36 | res.end ... ams.id) |
| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:50:1:58:2 | app.get ... \\n  }\\n}) |
| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:52:5:52:51 | res.hea ... ype()}) |
| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:53:5:53:36 | res.end ... ams.id) |
| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:55:5:55:60 | res.set ... =utf8') |
| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:56:5:56:36 | res.end ... ams.id) |
| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:60:1:71:2 | app.get ... set.\\n}) |
| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:62:5:62:60 | res.wri ... json'}) |
| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:63:5:63:37 | res.sen ... ams.id) |
| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:66:3:66:15 | doSomething() |
| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:67:3:67:17 | somethingMore() |
| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:68:9:68:21 | Math.random() |
| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:69:3:69:20 | res.writeHead(404) |
| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:70:3:70:35 | res.sen ... ams.id) |
| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:73:1:79:2 | app.get ... / OK\\n}) |
| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:74:3:74:49 | res.hea ... ype()}) |
| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:75:3:77:4 | myFancy ... OK\\n  }) |
| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:76:2:76:34 | res.sen ... ams.id) |
| autogenerated/Xss/ReflectedXss/ReflectedXssContentTypes.js:78:3:78:34 | res.end ... ams.id) |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:1:13:1:26 | require("url") |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:3:1:3:15 | require("http") |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:3:1:6:2 | require ... ame)\\n}) |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:4:16:4:39 | url.par ... , true) |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:9:3:9:68 | resp.wr ... tf-8"}) |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood2.js:10:3:10:16 | resp.end(text) |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:1:15:1:32 | require('express') |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:3:11:3:19 | express() |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:12:13:12:33 | str.cha ... (index) |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:33:15:33:45 | str.sub ...  index) |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:41:14:41:44 | str.sub ...  index) |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:77:16:77:36 | value.s ... g(0, i) |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:81:9:81:27 | parts.push('&amp;') |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:84:9:84:28 | parts.push('&quot;') |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:87:9:87:26 | parts.push('&lt;') |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:90:9:90:26 | parts.push('&gt;') |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:96:12:96:30 | value.charCodeAt(i) |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:7:105:39 | parts.p ... (j, i)) |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:105:18:105:38 | value.s ... g(j, i) |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:108:10:108:23 | parts.join('') |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:115:14:115:26 | s.chatAt(i++) |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:134:1:141:2 | app.get ... / OK\\n}) |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:137:3:137:28 | res.sen ... 1(url)) |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:138:3:138:28 | res.sen ... 2(url)) |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:139:3:139:28 | res.sen ... 3(url)) |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood3.js:140:3:140:28 | res.sen ... 4(url)) |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:1:14:1:35 | require ... -html') |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:2:15:2:32 | require('express') |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:4:11:4:19 | express() |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:6:1:13:2 | app.get ...    ;\\n}) |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:7:8:7:35 | isValid ... ams.id) |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:9:5:9:54 | res.sen ... ms.id)) |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:9:33:9:53 | escape( ... ams.id) |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:16:1:20:2 | app.get ...  });\\n}) |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:17:8:17:35 | isValid ... ams.id) |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:19:5:19:60 | res.ren ... s.id }) |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:22:1:30:2 | app.get ...    ;\\n}) |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:23:8:23:35 | isValid ... ams.id) |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:25:5:25:41 | res.set ... plain') |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:26:5:26:46 | res.sen ... ams.id) |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:36:1:44:2 | app.get ...    ;\\n}) |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:37:8:37:35 | isValid ... ams.id) |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:39:5:39:46 | res.set ... Type()) |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:40:5:40:46 | res.sen ... ams.id) |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:46:1:51:2 | app.get ... sg);\\n}) |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:48:2:48:50 | res.set ... /json') |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:49:2:49:44 | res.set ... length) |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:50:2:50:13 | res.end(msg) |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:53:1:58:2 | app.get ... \\n  }\\n}) |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:55:8:55:26 | /["'&<>]/.exec(url) |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:56:5:56:17 | res.send(url) |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:61:8:61:26 | /["'&<>]/.exec(str) |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:66:1:70:2 | app.get ... / OK\\n}) |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:69:3:69:28 | res.sen ... 1(url)) |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:75:19:75:43 | matchHt ... ec(str) |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:82:1:86:2 | app.get ... / OK\\n}) |
| autogenerated/Xss/ReflectedXss/ReflectedXssGood.js:85:3:85:28 | res.sen ... 2(url)) |
| autogenerated/Xss/ReflectedXss/cookies.js:1:15:1:32 | require('express') |
| autogenerated/Xss/ReflectedXss/cookies.js:2:20:2:43 | require ... arser') |
| autogenerated/Xss/ReflectedXss/cookies.js:4:11:4:19 | express() |
| autogenerated/Xss/ReflectedXss/cookies.js:5:1:5:23 | app.use ... rser()) |
| autogenerated/Xss/ReflectedXss/cookies.js:5:9:5:22 | cookieParser() |
| autogenerated/Xss/ReflectedXss/cookies.js:7:1:10:2 | app.get ... e]);\\n}) |
| autogenerated/Xss/ReflectedXss/cookies.js:9:3:9:66 | res.sen ... .name]) |
| autogenerated/Xss/ReflectedXss/etherpad.js:1:15:1:32 | require('express') |
| autogenerated/Xss/ReflectedXss/etherpad.js:2:17:2:38 | require ... -name') |
| autogenerated/Xss/ReflectedXss/etherpad.js:3:11:3:19 | express() |
| autogenerated/Xss/ReflectedXss/etherpad.js:5:1:12:2 | app.get ... se);\\n}) |
| autogenerated/Xss/ReflectedXss/etherpad.js:8:25:8:50 | isVarNa ... .jsonp) |
| autogenerated/Xss/ReflectedXss/etherpad.js:11:3:11:20 | res.send(response) |
| autogenerated/Xss/ReflectedXss/formatting.js:1:15:1:32 | require('express') |
| autogenerated/Xss/ReflectedXss/formatting.js:3:1:3:9 | express() |
| autogenerated/Xss/ReflectedXss/formatting.js:3:1:8:2 | express ... T OK\\n}) |
| autogenerated/Xss/ReflectedXss/formatting.js:5:5:5:48 | res.sen ...  evil)) |
| autogenerated/Xss/ReflectedXss/formatting.js:5:14:5:47 | console ... , evil) |
| autogenerated/Xss/ReflectedXss/formatting.js:6:5:6:48 | res.sen ...  evil)) |
| autogenerated/Xss/ReflectedXss/formatting.js:6:14:6:47 | util.fo ... , evil) |
| autogenerated/Xss/ReflectedXss/formatting.js:7:5:7:54 | res.sen ...  evil)) |
| autogenerated/Xss/ReflectedXss/formatting.js:7:14:7:30 | require("printf") |
| autogenerated/Xss/ReflectedXss/formatting.js:7:14:7:53 | require ... , evil) |
| autogenerated/Xss/ReflectedXss/live-server.js:1:18:1:39 | require ... erver") |
| autogenerated/Xss/ReflectedXss/live-server.js:6:5:6:51 | res.end ... html>`) |
| autogenerated/Xss/ReflectedXss/live-server.js:9:1:13:2 | middlew ... T OK\\n}) |
| autogenerated/Xss/ReflectedXss/live-server.js:12:5:12:51 | res.end ... html>`) |
| autogenerated/Xss/ReflectedXss/live-server.js:18:1:18:24 | liveSer ... params) |
| autogenerated/Xss/ReflectedXss/pages/api/myapi.js:2:5:2:21 | res.send(req.url) |
| autogenerated/Xss/ReflectedXss/partial.js:1:15:1:32 | require('express') |
| autogenerated/Xss/ReflectedXss/partial.js:2:18:2:38 | require ... score') |
| autogenerated/Xss/ReflectedXss/partial.js:3:14:3:30 | require('lodash') |
| autogenerated/Xss/ReflectedXss/partial.js:4:9:4:24 | require('ramda') |
| autogenerated/Xss/ReflectedXss/partial.js:6:11:6:19 | express() |
| autogenerated/Xss/ReflectedXss/partial.js:8:1:15:2 | app.get ... ck);\\n}) |
| autogenerated/Xss/ReflectedXss/partial.js:10:5:10:19 | res.send(x + y) |
| autogenerated/Xss/ReflectedXss/partial.js:13:18:13:49 | sendRes ... eq.url) |
| autogenerated/Xss/ReflectedXss/partial.js:14:3:14:29 | [1, 2,  ... llback) |
| autogenerated/Xss/ReflectedXss/partial.js:17:1:24:2 | app.get ... ck);\\n}) |
| autogenerated/Xss/ReflectedXss/partial.js:19:5:19:19 | res.send(x + y) |
| autogenerated/Xss/ReflectedXss/partial.js:22:18:22:58 | undersc ... eq.url) |
| autogenerated/Xss/ReflectedXss/partial.js:23:3:23:29 | [1, 2,  ... llback) |
| autogenerated/Xss/ReflectedXss/partial.js:26:1:33:2 | app.get ... ck);\\n}) |
| autogenerated/Xss/ReflectedXss/partial.js:28:5:28:19 | res.send(x + y) |
| autogenerated/Xss/ReflectedXss/partial.js:31:18:31:54 | lodash. ... eq.url) |
| autogenerated/Xss/ReflectedXss/partial.js:32:3:32:29 | [1, 2,  ... llback) |
| autogenerated/Xss/ReflectedXss/partial.js:35:1:42:2 | app.get ... ck);\\n}) |
| autogenerated/Xss/ReflectedXss/partial.js:37:5:37:19 | res.send(x + y) |
| autogenerated/Xss/ReflectedXss/partial.js:40:18:40:51 | R.parti ... q.url]) |
| autogenerated/Xss/ReflectedXss/partial.js:41:3:41:29 | [1, 2,  ... llback) |
| autogenerated/Xss/ReflectedXss/partial.js:44:1:55:2 | app.get ... site\\n}) |
| autogenerated/Xss/ReflectedXss/partial.js:49:18:49:45 | getFirs ... eq.url) |
| autogenerated/Xss/ReflectedXss/partial.js:51:3:51:20 | res.send(callback) |
| autogenerated/Xss/ReflectedXss/partial.js:52:3:52:22 | res.send(callback()) |
| autogenerated/Xss/ReflectedXss/partial.js:52:12:52:21 | callback() |
| autogenerated/Xss/ReflectedXss/partial.js:54:3:54:29 | res.sen ... ello")) |
| autogenerated/Xss/ReflectedXss/promises.js:1:15:1:32 | require('express') |
| autogenerated/Xss/ReflectedXss/promises.js:2:11:2:19 | express() |
| autogenerated/Xss/ReflectedXss/promises.js:4:1:11:2 | app.get ... / OK\\n}) |
| autogenerated/Xss/ReflectedXss/promises.js:5:3:6:27 | new Pro ... end(x)) |
| autogenerated/Xss/ReflectedXss/promises.js:5:36:5:58 | resolve ... y.data) |
| autogenerated/Xss/ReflectedXss/promises.js:6:16:6:26 | res.send(x) |
| autogenerated/Xss/ReflectedXss/promises.js:8:3:9:29 | new Pro ... tml(x)) |
| autogenerated/Xss/ReflectedXss/promises.js:8:3:10:27 | new Pro ... end(x)) |
| autogenerated/Xss/ReflectedXss/promises.js:8:36:8:58 | resolve ... y.data) |
| autogenerated/Xss/ReflectedXss/promises.js:10:16:10:26 | res.send(x) |
| autogenerated/Xss/ReflectedXss/tst2.js:1:15:1:32 | require('express') |
| autogenerated/Xss/ReflectedXss/tst2.js:3:11:3:19 | express() |
| autogenerated/Xss/ReflectedXss/tst2.js:5:1:9:2 | app.get ... T OK\\n}) |
| autogenerated/Xss/ReflectedXss/tst2.js:7:3:7:13 | res.send(p) |
| autogenerated/Xss/ReflectedXss/tst2.js:8:3:8:13 | res.send(r) |
| autogenerated/Xss/ReflectedXss/tst2.js:13:1:24:2 | app.get ... / OK\\n}) |
| autogenerated/Xss/ReflectedXss/tst2.js:17:5:17:15 | res.send(p) |
| autogenerated/Xss/ReflectedXss/tst2.js:18:3:18:13 | res.send(p) |
| autogenerated/Xss/ReflectedXss/tst2.js:21:5:21:15 | res.send(p) |
| autogenerated/Xss/ReflectedXss/tst2.js:23:5:23:15 | res.send(p) |
| autogenerated/Xss/ReflectedXss/tst2.js:27:15:27:30 | require('clone') |
| autogenerated/Xss/ReflectedXss/tst2.js:29:1:38:2 | app.get ... T OK\\n}) |
| autogenerated/Xss/ReflectedXss/tst2.js:34:15:34:24 | clone(obj) |
| autogenerated/Xss/ReflectedXss/tst2.js:36:3:36:13 | res.send(p) |
| autogenerated/Xss/ReflectedXss/tst2.js:37:3:37:19 | res.send(other.p) |
| autogenerated/Xss/ReflectedXss/tst2.js:40:29:40:59 | require ... cript') |
| autogenerated/Xss/ReflectedXss/tst2.js:42:1:52:2 | app.get ... T OK\\n}) |
| autogenerated/Xss/ReflectedXss/tst2.js:45:20:45:41 | seriali ... ript(p) |
| autogenerated/Xss/ReflectedXss/tst2.js:47:3:47:22 | res.send(serialized) |
| autogenerated/Xss/ReflectedXss/tst2.js:49:16:49:53 | seriali ...  true}) |
| autogenerated/Xss/ReflectedXss/tst2.js:51:3:51:18 | res.send(unsafe) |
| autogenerated/Xss/ReflectedXss/tst2.js:54:16:54:32 | require('fclone') |
| autogenerated/Xss/ReflectedXss/tst2.js:56:1:65:2 | app.get ... T OK\\n}) |
| autogenerated/Xss/ReflectedXss/tst2.js:61:15:61:25 | fclone(obj) |
| autogenerated/Xss/ReflectedXss/tst2.js:63:3:63:13 | res.send(p) |
| autogenerated/Xss/ReflectedXss/tst2.js:64:3:64:19 | res.send(other.p) |
| autogenerated/Xss/ReflectedXss/tst2.js:67:12:67:32 | require ... cycle') |
| autogenerated/Xss/ReflectedXss/tst2.js:68:1:77:2 | app.get ... T OK\\n}) |
| autogenerated/Xss/ReflectedXss/tst2.js:73:15:73:44 | jc.retr ... e(obj)) |
| autogenerated/Xss/ReflectedXss/tst2.js:73:29:73:43 | jc.decycle(obj) |
| autogenerated/Xss/ReflectedXss/tst2.js:75:3:75:13 | res.send(p) |
| autogenerated/Xss/ReflectedXss/tst2.js:76:3:76:19 | res.send(other.p) |
| autogenerated/Xss/ReflectedXss/tst2.js:79:18:79:37 | require('sort-keys') |
| autogenerated/Xss/ReflectedXss/tst2.js:81:1:90:2 | app.get ... T OK\\n}) |
| autogenerated/Xss/ReflectedXss/tst2.js:86:15:86:27 | sortKeys(obj) |
| autogenerated/Xss/ReflectedXss/tst2.js:88:3:88:13 | res.send(p) |
| autogenerated/Xss/ReflectedXss/tst2.js:89:3:89:19 | res.send(other.p) |
| autogenerated/Xss/ReflectedXss/tst3.js:1:15:1:32 | require('express') |
| autogenerated/Xss/ReflectedXss/tst3.js:3:11:3:19 | express() |
| autogenerated/Xss/ReflectedXss/tst3.js:4:1:4:26 | app.ena ... ed-by') |
| autogenerated/Xss/ReflectedXss/tst3.js:4:1:4:50 | app.ena ... ed-by') |
| autogenerated/Xss/ReflectedXss/tst3.js:4:1:7:2 | app.ena ... T OK\\n}) |
| autogenerated/Xss/ReflectedXss/tst3.js:6:3:6:13 | res.send(p) |
| autogenerated/Xss/ReflectedXss/tst3.js:9:18:9:36 | require("prettier") |
| autogenerated/Xss/ReflectedXss/tst3.js:10:1:13:2 | app.pos ... T OK\\n}) |
| autogenerated/Xss/ReflectedXss/tst3.js:11:16:11:74 | prettie ... bel" }) |
| autogenerated/Xss/ReflectedXss/tst3.js:12:3:12:16 | res.send(code) |
| autogenerated/Xss/StoredXss/xss-through-filenames.js:1:12:1:26 | require('http') |
| autogenerated/Xss/StoredXss/xss-through-filenames.js:2:10:2:22 | require('fs') |
| autogenerated/Xss/StoredXss/xss-through-filenames.js:4:15:4:32 | require('express') |
| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:1:6:9 | express() |
| autogenerated/Xss/StoredXss/xss-through-filenames.js:6:1:10:2 | express ...  });\\n}) |
| autogenerated/Xss/StoredXss/xss-through-filenames.js:7:5:9:6 | fs.read ... \\n    }) |
| autogenerated/Xss/StoredXss/xss-through-filenames.js:8:9:8:24 | res.send(files1) |
| autogenerated/Xss/StoredXss/xss-through-filenames.js:15:1:40:2 | http.cr ...  });\\n}) |
| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:9:19:25 | files2.sort(sort) |
| autogenerated/Xss/StoredXss/xss-through-filenames.js:19:9:21:10 | files2. ...      }) |
| autogenerated/Xss/StoredXss/xss-through-filenames.js:20:13:20:48 | files3. ... </li>') |
| autogenerated/Xss/StoredXss/xss-through-filenames.js:22:16:22:30 | files3.join('') |
| autogenerated/Xss/StoredXss/xss-through-filenames.js:25:5:39:6 | fs.read ... \\n    }) |
| autogenerated/Xss/StoredXss/xss-through-filenames.js:26:9:26:25 | res.write(files1) |
| autogenerated/Xss/StoredXss/xss-through-filenames.js:30:9:32:10 | files1. ...      }) |
| autogenerated/Xss/StoredXss/xss-through-filenames.js:31:13:31:29 | files2.push(file) |
| autogenerated/Xss/StoredXss/xss-through-filenames.js:33:9:33:25 | res.write(files2) |
| autogenerated/Xss/StoredXss/xss-through-filenames.js:37:9:37:25 | res.write(files3) |
| autogenerated/Xss/StoredXss/xss-through-torrent.js:1:22:1:45 | require ... rrent') |
| autogenerated/Xss/StoredXss/xss-through-torrent.js:2:17:2:34 | require('express') |
| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:1:4:9 | express() |
| autogenerated/Xss/StoredXss/xss-through-torrent.js:4:1:8:2 | express ... T OK\\n}) |
| autogenerated/Xss/StoredXss/xss-through-torrent.js:5:16:5:36 | parseTo ... nknown) |
| autogenerated/Xss/StoredXss/xss-through-torrent.js:7:2:7:15 | res.send(name) |
| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:3:3:3:42 | define( ... actory) |
| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:5:8:43 | $("<spa ... span>") |
| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:8:18:8:30 | $.trim("foo") |
| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:5:12:13 | $("#foo") |
| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:12:5:12:54 | $("#foo ... span>") |
| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:5:14:13 | $("#foo") |
| autogenerated/Xss/UnsafeHtmlConstruction/jquery-plugin.js:14:5:14:48 | $("#foo ... span>") |
| autogenerated/Xss/UnsafeHtmlConstruction/lib2/index.ts:3:5:3:35 | documen ... #html") |
| autogenerated/Xss/UnsafeHtmlConstruction/lib2/src/MyNode.ts:3:5:3:35 | documen ... #html") |
| autogenerated/Xss/UnsafeHtmlConstruction/lib/src/MyNode.ts:3:5:3:35 | documen ... #html") |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:3:5:3:35 | documen ... #html") |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:7:17:7:62 | new DOM ... t/xml") |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:5:8:34 | documen ... "#xml") |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:8:5:8:67 | documen ... lement) |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:12:17:12:62 | new DOM ... t/xml") |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:15:17:15:46 | documen ... 'span') |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:16:5:16:36 | tmp.app ... Node()) |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:16:21:16:35 | xml.cloneNode() |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:5:17:34 | documen ... "#xml") |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:17:5:17:51 | documen ... ld(tmp) |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:18:20:39 | require ... wn-it') |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:20:18:20:53 | require ...  true}) |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:22:18:22:35 | markdown.render(s) |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:23:5:23:39 | documen ... kdown") |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:26:19:26:38 | require('striptags') |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:28:18:28:52 | stripta ... span>") |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:29:5:29:40 | documen ... tized") |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:32:21:32:38 | require("./typed") |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:34:25:34:50 | require ... lugin") |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:37:17:37:62 | new DOM ... t/xml") |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:47:9:47:40 | documen ... class") |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:60:22:60:48 | $.exten ... ptions) |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:61:12:63:6 | this.ea ... \\n    }) |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:9:62:41 | $("<b>" ... "</b>") |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:62:9:62:56 | $("<b>" ... o(this) |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:67:5:67:33 | documen ... ("#id") |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:5:68:33 | documen ... ("#id") |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:68:63:68:89 | attrVal ... /g, "") |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:9:69:29 | attrVal ... f("\\"") |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:69:41:69:60 | attrVal.indexOf("'") |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:70:9:70:37 | documen ... ("#id") |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:76:5:76:39 | documen ... plate") |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:9:81:17 | $("#foo") |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:81:9:81:50 | $("#foo ... span>") |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:9:83:17 | $("#foo") |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:83:9:83:50 | $("#foo ... span>") |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:9:85:17 | $("#foo") |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:85:9:85:50 | $("#foo ... span>") |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:94:5:94:13 | $("#foo") |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:94:5:94:33 | $("#foo ... TML(x)) |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:97:19:97:36 | require('mermaid') |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:99:5:101:6 | myMerma ... \\n    }) |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:100:9:100:17 | $("#foo") |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:100:9:100:27 | $("#foo").html(svg) |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:5:103:13 | $("#foo") |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:5:103:45 | $("#foo ... d", x)) |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:103:20:103:44 | myMerma ... id", x) |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:105:5:107:6 | mermaid ... \\n    }) |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:106:9:106:17 | $("#foo") |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:106:9:106:27 | $("#foo").html(svg) |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:5:109:13 | $("#foo") |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:5:109:43 | $("#foo ... d", x)) |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:109:20:109:42 | mermaid ... id", x) |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:111:5:113:6 | mermaid ... \\n    }) |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:112:9:112:17 | $("#foo") |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:112:9:112:27 | $("#foo").html(svg) |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:117:18:117:35 | markdown.render(s) |
| autogenerated/Xss/UnsafeHtmlConstruction/main.js:118:5:118:39 | documen ... kdown") |
| autogenerated/Xss/UnsafeHtmlConstruction/typed.ts:7:20:7:65 | documen ... ent("") |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:3:3:3:12 | $(options) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:5:3:5:19 | $(options.target) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:7:7:7:31 | isEleme ... target) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:8:4:8:20 | $(options.target) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:13:7:13:23 | isElement(target) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:14:4:14:12 | $(target) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:18:4:18:12 | $(target) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:22:4:22:12 | $(target) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:24:4:24:12 | $(target) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:28:4:28:12 | $(target) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:30:4:30:12 | $(target) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:34:4:34:12 | $(target) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:36:4:36:12 | $(target) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:40:4:40:12 | $(target) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:42:4:42:12 | $(target) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:46:4:46:12 | $(target) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:48:4:48:12 | $(target) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:52:4:52:12 | $(target) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:54:4:54:12 | $(target) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:58:4:58:12 | $(target) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:60:4:60:12 | $(target) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:66:24:66:33 | $(element) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:67:24:67:44 | $.exten ... ptions) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:68:43:68:64 | $(this. ... parent) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:72:3:72:24 | $(optio ... ar.baz) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:73:3:73:17 | $(options.html) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:3:77:6 | $(x) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:77:3:77:36 | $(x).ap ... ar.baz) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:81:3:81:25 | $("#" + ... target) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:86:13:86:27 | $.extend({}, o) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:89:4:89:17 | console.log(t) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:90:4:90:7 | $(t) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:97:7:97:22 | safe.has(target) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:98:4:98:12 | $(target) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:102:13:105:13 | $.exten ... ptions) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:106:3:106:17 | $(options.menu) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:107:3:107:19 | $(options.target) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:115:13:115:58 | $.exten ... ptions) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:116:3:116:17 | $(options.menu) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:117:3:117:19 | $(options.target) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:122:3:122:19 | $(options.target) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:125:2:129:3 | $.exten ... \\t\\t}\\n\\t}) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:127:4:127:20 | $(options.target) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:132:3:132:19 | $(options.target) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:136:3:136:30 | $(optio ... lector) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:141:3:141:17 | $(intentional1) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:144:3:144:17 | $(intentional2) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:147:3:147:17 | $(intentional3) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:150:3:150:18 | $(unintentional) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:31:155:39 | $(target) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:42:155:52 | $(document) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:155:42:155:65 | $(docum ... target) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:39:156:55 | $(options.target) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:58:156:68 | $(document) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:156:58:156:89 | $(docum ... target) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:42:157:60 | $(options.target.a) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:63:157:73 | $(document) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:157:63:157:96 | $(docum ... rget.a) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:161:3:161:31 | $(anyPr ... target) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:163:3:163:55 | $(somet ... arget)) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:163:5:163:54 | somethi ... target) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:167:4:167:12 | $(target) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:170:4:170:12 | $(target) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:179:3:179:19 | $(options.target) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:3:182:13 | $(document) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:182:3:182:34 | $(docum ... target) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:187:11:187:44 | doSomet ... ments ) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:190:13:190:35 | $.exten ... tions ) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:192:16:192:30 | $( options.of ) |
| autogenerated/Xss/UnsafeJQueryPlugin/unsafe-jquery-plugin.js:193:3:193:21 | console.log(target) |
| autogenerated/Xss/XssThroughDom/forms.js:9:17:9:24 | $("#id") |
| autogenerated/Xss/XssThroughDom/forms.js:9:17:9:41 | $("#id" ... es.foo) |
| autogenerated/Xss/XssThroughDom/forms.js:12:17:12:24 | $("#id") |
| autogenerated/Xss/XssThroughDom/forms.js:12:17:12:41 | $("#id" ... es.bar) |
| autogenerated/Xss/XssThroughDom/forms.js:22:24:31:2 | withFor ...    }\\n}) |
| autogenerated/Xss/XssThroughDom/forms.js:22:24:31:10 | withFor ... MyForm) |
| autogenerated/Xss/XssThroughDom/forms.js:25:9:25:16 | $("#id") |
| autogenerated/Xss/XssThroughDom/forms.js:25:9:25:35 | $("#id" ... .email) |
| autogenerated/Xss/XssThroughDom/forms.js:29:9:29:16 | $("#id") |
| autogenerated/Xss/XssThroughDom/forms.js:29:9:29:35 | $("#id" ... .email) |
| autogenerated/Xss/XssThroughDom/forms.js:34:36:34:53 | useFormikContext() |
| autogenerated/Xss/XssThroughDom/forms.js:35:5:35:12 | $("#id") |
| autogenerated/Xss/XssThroughDom/forms.js:35:5:35:31 | $("#id" ... .email) |
| autogenerated/Xss/XssThroughDom/forms.js:37:5:37:12 | $("#id") |
| autogenerated/Xss/XssThroughDom/forms.js:37:5:37:35 | $("#id" ... .email) |
| autogenerated/Xss/XssThroughDom/forms.js:45:7:45:14 | $("#id") |
| autogenerated/Xss/XssThroughDom/forms.js:45:7:45:34 | $("#id" ... stooge) |
| autogenerated/Xss/XssThroughDom/forms.js:57:5:57:12 | $("#id") |
| autogenerated/Xss/XssThroughDom/forms.js:57:5:57:33 | $("#id" ... .value) |
| autogenerated/Xss/XssThroughDom/forms.js:70:46:70:54 | useForm() |
| autogenerated/Xss/XssThroughDom/forms.js:72:5:72:12 | $("#id") |
| autogenerated/Xss/XssThroughDom/forms.js:72:5:72:28 | $("#id" ... a.name) |
| autogenerated/Xss/XssThroughDom/forms.js:76:21:76:42 | handleS ... Submit) |
| autogenerated/Xss/XssThroughDom/forms.js:77:33:77:60 | registe ... true }) |
| autogenerated/Xss/XssThroughDom/forms.js:84:35:84:43 | useForm() |
| autogenerated/Xss/XssThroughDom/forms.js:92:26:92:36 | getValues() |
| autogenerated/Xss/XssThroughDom/forms.js:93:11:93:18 | $("#id") |
| autogenerated/Xss/XssThroughDom/forms.js:93:11:93:36 | $("#id" ... s.name) |
| autogenerated/Xss/XssThroughDom/forms.js:102:5:102:41 | documen ... yform") |
| autogenerated/Xss/XssThroughDom/forms.js:102:5:104:6 | documen ... \\n    }) |
| autogenerated/Xss/XssThroughDom/forms.js:103:9:103:16 | $("#id") |
| autogenerated/Xss/XssThroughDom/forms.js:103:9:103:37 | $("#id" ... .value) |
| autogenerated/Xss/XssThroughDom/forms.js:106:5:106:41 | documen ... yform") |
| autogenerated/Xss/XssThroughDom/forms.js:107:9:107:16 | $("#id") |
| autogenerated/Xss/XssThroughDom/forms.js:107:9:107:37 | $("#id" ... .value) |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:2:2:9 | $("#id") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:2:2:35 | $("#id" ... .val()) |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:16:2:28 | $("textarea") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:2:16:2:34 | $("textarea").val() |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:2:4:9 | $("#id") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:2:4:41 | $("#id" ... text()) |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:16:4:33 | $(".some-element") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:4:16:4:40 | $(".som ... .text() |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:2:6:9 | $("#id") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:2:6:53 | $("#id" ... "bar")) |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:16:6:33 | $(".some-element") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:6:16:6:52 | $(".som ...  "bar") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:2:7:9 | $("#id") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:2:7:55 | $("#id" ... bar"})) |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:16:7:33 | $(".some-element") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:7:16:7:54 | $(".som ... "bar"}) |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:2:8:9 | $("#id") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:2:8:54 | $("#id" ... rget")) |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:16:8:33 | $(".some-element") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:8:16:8:53 | $(".som ... arget") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:10:2:10:9 | $("#id") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:10:2:12:2 | $("#id" ... OK.\\t\\n\\t) |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:11:3:11:32 | documen ... ("foo") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:14:2:14:9 | $("#id") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:14:2:16:2 | $("#id" ... S. \\t\\n\\t) |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:15:3:15:32 | documen ... ("foo") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:18:2:18:9 | $("#id") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:18:2:20:2 | $("#id" ... K. \\t\\n\\t) |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:19:3:19:32 | documen ... ("foo") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:22:2:22:9 | $("#id") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:22:2:24:2 | $("#id" ... K. \\t\\n\\t) |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:23:3:23:39 | documen ... tarea") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:26:2:26:9 | $("#id") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:26:2:28:2 | $("#id" ... T OK\\n\\t) |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:3:27:33 | documen ... 'div1') |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:27:3:27:61 | documen ... arget') |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:32:14:32:17 | $(x) |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:36:8:36:20 | $("textarea") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:36:8:36:26 | $("textarea").val() |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:40:14:40:17 | $(x) |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:43:8:43:20 | $("textarea") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:43:8:43:26 | $("textarea").val() |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:46:2:46:9 | $("#id") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:46:2:48:2 | $("#id" ... ery.\\n\\t) |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:3:47:33 | $("<p>" ... "</p>") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:3:47:40 | $("<p>" ... .text() |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:47:13:47:23 | something() |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:2:51:9 | $("#id") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:2:51:16 | $("#id").get(0) |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:30:51:42 | $("textarea") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:51:30:51:48 | $("textarea").val() |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:53:13:53:20 | $("#id") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:2:54:50 | base[ht ... .val()) |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:31:54:43 | $("textarea") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:54:31:54:49 | $("textarea").val() |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:2:56:9 | $("#id") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:2:56:16 | $("#id").get(0) |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:30:56:39 | $("input") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:56:30:56:46 | $("input").get(0) |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:2:57:9 | $("#id") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:2:57:16 | $("#id").get(0) |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:30:57:39 | $("input") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:30:57:46 | $("input").get(0) |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:57:30:57:67 | $("inpu ... "name") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:2:59:9 | $("#id") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:2:59:16 | $("#id").get(0) |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:30:59:39 | $("input") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:59:30:59:58 | $("inpu ... e("id") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:2:61:9 | $("#id") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:2:61:16 | $("#id").get(0) |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:30:61:40 | $(document) |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:30:61:55 | $(docum ... ption") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:61:30:61:69 | $(docum ... value") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:63:18:63:30 | $("textarea") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:2:64:9 | $("#id") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:2:64:16 | $("#id").get(0) |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:64:30:64:40 | valMethod() |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:16:66:26 | $(document) |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:16:66:41 | $(docum ... ption") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:66:16:66:55 | $(docum ... value") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:3:68:10 | $("#id") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:68:3:68:17 | $("#id").get(0) |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:2:71:33 | $.jGrow ... ).name) |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:11:71:20 | $("input") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:71:11:71:27 | $("input").get(0) |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:20:73:29 | $("input") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:73:20:73:36 | $("input").get(0) |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:74:9:74:19 | something() |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:75:20:75:32 | $("textarea") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:77:2:77:12 | $(selector) |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:79:2:79:35 | $(docum ... .value) |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:2:81:9 | $("#id") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:2:81:45 | $("#id" ... ext') ) |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:17:81:25 | $('#foo') |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:81:17:81:43 | $('#foo ... rText') |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:83:16:83:31 | require("anser") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:84:15:84:23 | $("text") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:84:15:84:30 | $("text").text() |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:2:86:9 | $("#id") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:2:86:38 | $("#id" ... (text)) |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:86:16:86:37 | anser.a ... l(text) |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:2:87:9 | $("#id") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:2:87:41 | $("#id" ... (text)) |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:87:16:87:40 | new ans ... s(text) |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:2:89:16 | $("section h1") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:89:2:91:3 | $("sect ...  OK\\n\\t}) |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:3:90:13 | $("nav ul") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:3:90:125 | $("nav  ... n</a>") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:37:90:43 | $(this) |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:37:90:50 | $(this).text() |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:37:90:64 | $(this) ... rCase() |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:37:90:83 | $(this) ... g, '-') |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:90:37:90:106 | $(this) ... +/g,'') |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:93:2:93:9 | $("#id") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:93:2:93:47 | $("#id" ... .value) |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:93:16:93:24 | $("#foo") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:93:16:93:37 | $("#foo ... ".bla") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:96:3:96:10 | $("#id") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:96:3:96:48 | $("#id" ... .value) |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:96:17:96:25 | $("#foo") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:96:17:96:38 | $("#foo ... ".bla") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:102:13:102:20 | $("#id") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:102:13:102:27 | $("#id").get(0) |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:3:109:10 | $("#id") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:109:3:109:17 | $("#id").get(0) |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:114:17:114:48 | documen ... #link") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:115:2:115:9 | $("#id") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:115:2:115:19 | $("#id").html(src) |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:117:5:117:12 | $("#id") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:117:5:117:29 | $("#id" ... ", src) |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:119:5:119:18 | $("input.foo") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:120:9:120:16 | $("#id") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:120:9:120:46 | $("#id" ... ].name) |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:9:122:19 | $("img#id") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:9:122:72 | $("img# ... es[0])) |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:122:33:122:71 | URL.cre ... les[0]) |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:127:13:127:39 | documen ... nt('a') |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:128:21:128:34 | getSelection() |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:129:21:129:43 | documen ... ction() |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:130:17:130:37 | wSelect ... tring() |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:130:42:130:62 | dSelect ... tring() |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:132:2:132:9 | $("#id") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:132:2:132:24 | $("#id" ... nkText) |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:136:17:136:35 | require("cash-dom") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:139:17:139:48 | documen ... #link") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:140:2:140:12 | cash("#id") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:140:2:140:22 | cash("# ... ml(src) |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:141:5:141:18 | cashDom("#id") |
| autogenerated/Xss/XssThroughDom/xss-through-dom.js:141:5:141:28 | cashDom ... ml(src) |
| autogenerated/XssThroughDom/BadTagFilter/tst.js:25:1:25:18 | doFilters(filters) |
| autogenerated/XssThroughDom/DoubleEscaping/tst.js:2:10:2:34 | s.repla ... quot;") |
| autogenerated/XssThroughDom/DoubleEscaping/tst.js:2:10:3:34 | s.repla ... apos;") |
| autogenerated/XssThroughDom/DoubleEscaping/tst.js:2:10:4:33 | s.repla ... &amp;") |
| autogenerated/XssThroughDom/DoubleEscaping/tst.js:8:10:8:33 | s.repla ... &amp;") |
| autogenerated/XssThroughDom/DoubleEscaping/tst.js:8:10:9:34 | s.repla ... quot;") |
| autogenerated/XssThroughDom/DoubleEscaping/tst.js:8:10:10:34 | s.repla ... apos;") |
| autogenerated/XssThroughDom/DoubleEscaping/tst.js:14:10:14:35 | s.repla ... , "\\"") |
| autogenerated/XssThroughDom/DoubleEscaping/tst.js:14:10:15:34 | s.repla ... g, "'") |
| autogenerated/XssThroughDom/DoubleEscaping/tst.js:14:10:16:33 | s.repla ... g, "&") |
| autogenerated/XssThroughDom/DoubleEscaping/tst.js:20:10:20:33 | s.repla ... g, "&") |
| autogenerated/XssThroughDom/DoubleEscaping/tst.js:20:10:21:35 | s.repla ... , "\\"") |
| autogenerated/XssThroughDom/DoubleEscaping/tst.js:20:10:22:34 | s.repla ... g, "'") |
| autogenerated/XssThroughDom/DoubleEscaping/tst.js:26:12:26:37 | code.re ... '&lt;') |
| autogenerated/XssThroughDom/DoubleEscaping/tst.js:26:12:26:59 | code.re ... '&gt;') |
| autogenerated/XssThroughDom/DoubleEscaping/tst.js:26:12:26:94 | code.re ... &amp;') |
| autogenerated/XssThroughDom/DoubleEscaping/tst.js:30:10:30:33 | s.repla ... g, "&") |
| autogenerated/XssThroughDom/DoubleEscaping/tst.js:30:10:31:43 | s.repla ... "else") |
| autogenerated/XssThroughDom/DoubleEscaping/tst.js:30:10:32:34 | s.repla ... g, "'") |
| autogenerated/XssThroughDom/DoubleEscaping/tst.js:38:9:38:34 | s.repla ... , "\\"") |
| autogenerated/XssThroughDom/DoubleEscaping/tst.js:38:9:39:33 | s.repla ... g, "'") |
| autogenerated/XssThroughDom/DoubleEscaping/tst.js:38:9:40:32 | s.repla ... g, "&") |
| autogenerated/XssThroughDom/DoubleEscaping/tst.js:41:5:41:15 | res.push(s) |
| autogenerated/XssThroughDom/DoubleEscaping/tst.js:47:7:47:30 | s.repla ... g, "&") |
| autogenerated/XssThroughDom/DoubleEscaping/tst.js:48:7:48:32 | s.repla ... , "\\"") |
| autogenerated/XssThroughDom/DoubleEscaping/tst.js:49:10:49:34 | s.repla ... g, "'") |
| autogenerated/XssThroughDom/DoubleEscaping/tst.js:53:10:53:33 | s.repla ... , '\\\\') |
| autogenerated/XssThroughDom/DoubleEscaping/tst.js:53:10:54:33 | s.repla ... , '\\'') |
| autogenerated/XssThroughDom/DoubleEscaping/tst.js:53:10:55:33 | s.repla ... , '\\"') |
| autogenerated/XssThroughDom/DoubleEscaping/tst.js:59:7:59:28 | s.repla ...  '%26') |
| autogenerated/XssThroughDom/DoubleEscaping/tst.js:60:7:60:28 | s.repla ...  '%25') |
| autogenerated/XssThroughDom/DoubleEscaping/tst.js:68:10:68:39 | s.repla ... quot;") |
| autogenerated/XssThroughDom/DoubleEscaping/tst.js:68:10:69:39 | s.repla ... apos;") |
| autogenerated/XssThroughDom/DoubleEscaping/tst.js:68:10:70:38 | s.repla ... &amp;") |
| autogenerated/XssThroughDom/DoubleEscaping/tst.js:79:10:79:43 | s.repla ... epl[c]) |
| autogenerated/XssThroughDom/DoubleEscaping/tst.js:79:10:79:66 | s.repla ... &amp;") |
| autogenerated/XssThroughDom/DoubleEscaping/tst.js:84:10:84:33 | s.repla ... , "\\\\") |
| autogenerated/XssThroughDom/DoubleEscaping/tst.js:84:10:84:56 | s.repla ... "\\\\\\\\") |
| autogenerated/XssThroughDom/DoubleEscaping/tst.js:90:16:90:46 | capture ... "\\\\\\\\") |
| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:6:2:9:2 | html.re ... nded\\n\\t) |
| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:10:2:10:68 | html.re ... panded) |
| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:13:2:16:2 | html.re ... nded\\n\\t) |
| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:17:2:17:48 | html.re ... panded) |
| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:20:2:23:2 | html.re ... nded\\n\\t) |
| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:24:2:24:49 | html.re ... panded) |
| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:26:2:26:39 | html.re ... panded) |
| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:30:2:30:37 | html.re ... panded) |
| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:35:2:35:44 | html.re ... nded()) |
| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:36:2:36:40 | html.re ... ething) |
| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:37:2:37:32 | default ... ething) |
| autogenerated/XssThroughDom/IncompleteSanitization/UnsafeHtmlExpansion.js:38:2:38:30 | getPatt ... ething) |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:3:13:3:57 | content ... gi, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:4:13:4:47 | content ... /g, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:5:13:5:49 | content ... /g, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:9:13:9:47 | content ... gi, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:10:13:10:49 | content ... /g, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:11:13:11:51 | content ... /g, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:19:3:19:35 | respons ... pt, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:25:10:25:40 | text.re ... /g, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:29:10:29:33 | /<!--\|- ... t(text) |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:30:12:30:42 | text.re ... /g, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:38:8:38:30 | id.repl ... /g, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:42:8:42:45 | id.repl ... /g, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:49:13:49:43 | req.url ... EL, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:58:22:58:43 | req.url ... ng(beg) |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:64:7:64:73 | x.repla ... /g, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:66:7:66:56 | x.repla ... /g, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:68:7:68:34 | x.repla ... /g, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:70:7:70:36 | x.repla ... /g, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:71:7:71:30 | x.repla ... /g, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:72:7:72:45 | x.repla ... gi, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:73:7:73:35 | x.repla ... gi, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:75:7:75:37 | x.repla ... gm, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:76:7:76:35 | x.repla ... +/, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:77:7:77:36 | x.repla ... /g, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:79:7:79:49 | x.repla ... , "\\n") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:81:7:81:58 | x.repla ... /g, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:82:7:82:50 | x.repla ... /g, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:83:7:83:63 | x.repla ... gi, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:85:7:85:48 | x.repla ... /g, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:87:7:87:47 | x.repla ... gi, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:89:7:89:35 | x.repla ... /g, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:92:7:96:4 | x.repla ... ";\\n  }) |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:98:7:98:53 | x.repla ... gi, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:100:7:100:28 | x.repla ... /g, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:101:7:101:30 | x.repla ... /g, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:102:7:102:30 | x.repla ... /g, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:104:7:104:58 | x.repla ... gi, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:106:7:106:64 | x.repla ... gi, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:107:7:107:62 | x.repla ... /g, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:108:7:108:75 | x.repla ... gm, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:109:7:109:58 | x.repla ... gi, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:110:7:110:50 | x.repla ... gi, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:111:7:111:32 | x.repla ... /g, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:112:7:112:50 | x.repla ... /g, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:113:7:113:41 | x.repla ... /g, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:115:10:115:23 | x.indexOf(".") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:116:9:117:27 | x\\n      ... //, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:116:9:118:29 | x\\n      ... /, "/") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:116:9:119:36 | x\\n      ... //, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:122:7:122:35 | x.repla ... +/, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:124:7:124:53 | x.repla ... /g, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:126:7:127:25 | x\\n    . ... //, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:126:7:128:27 | x\\n    . ... /, "/") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:126:7:129:34 | x\\n    . ... //, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:135:2:135:44 | content ... gi, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:136:2:136:46 | content ... gi, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:137:2:137:48 | content ... gi, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:138:2:138:48 | content ... gi, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:142:13:142:62 | content ... gi, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:143:13:143:56 | content ... /g, '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:144:13:144:91 | content ... /g, '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:145:13:145:90 | content ... /g, '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:146:13:146:43 | content ... /g, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:148:3:148:20 | n.cloneNode(false) |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:148:3:148:99 | n.clone ... gi, '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:148:3:150:4 | n.clone ... );\\n  }) |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:149:5:149:41 | o.push( ... e : a}) |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:152:3:152:20 | n.cloneNode(false) |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:152:3:152:99 | n.clone ... gi, '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:152:3:154:4 | n.clone ... );\\n  }) |
| autogenerated/XssThroughDom/IncompleteSanitization/tst-multi-character-sanitization.js:153:5:153:41 | o.push( ... e : a}) |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:1:15:1:32 | require('express') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:2:11:2:19 | express() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:5:10:5:27 | s.replace("'", "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:9:10:9:27 | s.replace(/'/, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:13:10:13:31 | s.repla ...  "\\\\'") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:17:10:17:32 | s.repla ... "\\\\$&") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:21:10:21:35 | s.repla ... "\\\\$&") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:25:10:25:37 | s.repla ... "\\\\$1") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:29:10:29:36 | s.repla ... "\\\\$1") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:33:10:33:27 | s.replace('\|', '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:37:10:37:32 | s.repla ... "\\\\\\"") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:41:10:41:30 | s.repla ...  "%2F") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:45:10:45:30 | s.repla ... ", "%") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:49:10:49:27 | s.replace(`'`, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:53:10:53:27 | s.replace("'", ``) |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:57:10:57:27 | s.replace(`'`, ``) |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:61:10:61:32 | s.repla ... "", "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:65:10:65:32 | s.repla ... " + "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:69:10:69:37 | s.repla ... " + "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:73:10:73:23 | s.indexOf("'") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:74:9:74:26 | s.replace("'", "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:79:10:79:23 | s.indexOf("'") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:80:9:80:26 | s.replace(/'/, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:85:10:85:36 | s.repla ... id10t") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:89:10:89:32 | s.repla ... "\\\\d+") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:93:10:93:33 | s.repla ... "\\\\\\\\") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:93:10:93:58 | s.repla ... "\\\\$&") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:97:10:97:35 | s.repla ... '\\\\\\\\') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:97:10:97:59 | s.repla ...  '\\\\"') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:101:7:101:32 | s.repla ... '\\\\\\\\') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:102:10:102:34 | s.repla ...  '\\\\"') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:106:10:106:33 | s.repla ... '\\\\$&') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:110:10:110:38 | s.repla ... '\\\\$&') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:114:7:114:23 | JSON.stringify(s) |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:115:7:115:20 | s.slice(1, -1) |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:116:7:116:28 | s.repla ... g, '"') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:117:7:117:28 | s.repla ...  "\\\\'") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:122:10:122:30 | s.repla ... , '\\u1f4a9\\udca9') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:126:10:126:30 | s.repla ... , "42") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:130:2:130:19 | s.replace('[', '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:130:2:130:36 | s.repla ... ]', '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:131:2:131:19 | s.replace('(', '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:131:2:131:36 | s.repla ... )', '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:132:2:132:19 | s.replace('{', '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:132:2:132:36 | s.repla ... }', '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:133:2:133:19 | s.replace('<', '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:133:2:133:36 | s.repla ... >', '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:135:2:135:22 | s.repla ...  '\\\\[') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:135:2:135:42 | s.repla ...  '\\\\]') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:136:2:136:22 | s.repla ...  '\\\\{') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:136:2:136:42 | s.repla ...  '\\\\}') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:138:6:138:23 | s.replace('[', '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:139:6:139:23 | s.replace(']', '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:140:2:140:19 | s.replace(/{/, '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:140:2:140:36 | s.repla ... }/, '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:141:2:141:19 | s.replace(']', '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:141:2:141:36 | s.repla ... [', '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:146:2:146:25 | require ... ocess") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:146:2:146:49 | require ... emacs") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:146:2:146:60 | require ... tring() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:146:2:146:78 | require ... n", "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:148:2:148:20 | x.replace("\\n", "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:148:2:148:34 | x.repla ... e(x, y) |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:149:2:149:16 | x.replace(x, y) |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:149:2:149:34 | x.repla ... n", "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:152:1:189:2 | app.get ... ed);\\n}) |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:153:19:153:32 | req.param("p") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:193:9:193:31 | s.repla ... ct, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:197:2:197:19 | s.replace('"', '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:197:2:197:36 | s.repla ... "', '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:198:2:198:19 | s.replace("'", "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:198:2:198:36 | s.repla ... '", "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:202:10:202:30 | p.repla ... /", "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:206:2:206:4 | s() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:206:2:206:24 | s().rep ... ]/g,'') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:207:2:207:4 | s() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:207:2:207:26 | s().rep ... /g, '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:208:2:208:4 | s() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:208:2:208:26 | s().rep ... /g, '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:209:2:209:4 | s() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:209:2:209:22 | s().rep ... /g, '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:209:2:209:40 | s().rep ... /g, '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:210:2:210:4 | s() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:210:2:210:22 | s().rep ... /g, '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:210:2:210:40 | s().rep ... /g, '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:210:2:210:58 | s().rep ... /g, '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:211:2:211:4 | s() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:211:2:211:22 | s().rep ... /g, '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:211:2:211:40 | s().rep ... /g, '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:211:2:211:58 | s().rep ... /g, '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:212:2:212:4 | s() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:212:2:212:22 | s().rep ... /g, '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:212:2:212:40 | s().rep ... /g, '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:212:2:212:58 | s().rep ... /g, '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:214:10:214:12 | s() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:214:10:214:30 | s().rep ... /g, '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:215:6:215:24 | s.replace(/>/g, '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:2:216:4 | s() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:2:216:26 | s().rep ... '&lt;') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:2:216:47 | s().rep ...  '&gt') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:2:216:70 | s().rep ... &amp;') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:216:2:216:93 | s().rep ... &#34;') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:2:217:4 | s() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:2:217:26 | s().rep ... '&lt;') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:2:217:47 | s().rep ...  '&gt') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:2:217:70 | s().rep ... &amp;') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:217:2:217:93 | s().rep ... &#39;') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:219:2:219:4 | s() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:219:2:219:26 | s().rep ... '&lt;') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:219:2:219:47 | s().rep ...  '&gt') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:219:2:219:89 | s().rep ... . */ }) |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:221:2:221:4 | s() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:221:2:221:27 | s().rep ... ]/g,'') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:2:223:4 | s() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:2:223:26 | s().rep ... '&lt;') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:2:223:48 | s().rep ... '&gt;') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:2:223:72 | s().rep ... quot;') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:223:2:223:107 | s().rep ... &amp;') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:2:225:4 | s() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:2:225:54 | s().rep ... &amp;') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:2:225:76 | s().rep ... '&lt;') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:2:225:98 | s().rep ... '&gt;') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:2:225:122 | s().rep ... quot;') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:225:2:225:146 | s().rep ... apos;') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:227:2:227:4 | s() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:227:2:227:36 | s().rep ... /g, '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:229:2:229:4 | s() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:229:2:229:25 | s().rep ... /g,'_') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:231:2:231:4 | s() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:231:2:231:26 | s().rep ... "&gt;") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:233:2:233:4 | s() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:233:2:233:67 | s().rep ... /g, "") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:235:2:235:4 | s() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:235:2:235:24 | s().rep ... ]/g,'') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:235:2:235:47 | s().rep ... /g, '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:237:2:237:4 | s() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:237:2:237:24 | s().rep ... ]/g,'') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:237:2:237:47 | s().rep ... /g, '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:239:2:239:4 | s() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:239:2:239:24 | s().rep ... ]/g,'') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:239:2:239:46 | s().rep ... /g, '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:243:9:243:11 | s() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:243:9:243:31 | s().rep ... ]/g,'') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:244:9:244:11 | s() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:244:9:244:33 | s().rep ... /g, '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:245:9:245:11 | s() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:245:9:245:33 | s().rep ... /g, '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:246:9:246:11 | s() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:246:9:246:33 | s().rep ... ]/g,'') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:247:9:247:11 | s() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:247:9:247:31 | s().rep ... ]/g,'') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:249:9:249:11 | s() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:249:9:249:33 | s().rep ... ]/g,'') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:250:9:250:11 | s() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:250:9:250:33 | s().rep ... ]/g,'') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:251:9:251:11 | s() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:251:9:251:33 | s().rep ... ]/g,'') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:253:21:253:23 | s() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:253:21:253:45 | s().rep ... /g, '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:254:32:254:34 | s() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:254:32:254:56 | s().rep ... /g, '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:255:26:255:28 | s() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:255:26:255:50 | s().rep ... /g, '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:256:15:256:17 | s() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:256:15:256:39 | s().rep ... /g, '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:261:10:261:37 | value.r ... &amp;') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:261:10:261:59 | value.r ... '&lt;') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:261:10:261:81 | value.r ... '&gt;') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:264:32:264:74 | escapeH ... quot;') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:266:18:266:26 | tag(node) |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:266:30:266:53 | [].map. ... tr_str) |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:266:30:266:53 | reflective call |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:266:30:266:62 | [].map. ... oin('') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:270:61:270:63 | s() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:270:61:270:85 | s().rep ... /g, '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:271:9:271:11 | s() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:271:9:271:31 | s().rep ... ]/g,'') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:271:9:271:55 | s().rep ... /g, '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:272:9:272:51 | encodeU ... /g,'')) |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:272:28:272:30 | s() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:272:28:272:50 | s().rep ... ]/g,'') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:12:274:14 | s() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:12:274:20 | s().val() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:12:274:27 | s().val().trim() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:12:274:50 | s().val ... g , '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:12:274:73 | s().val ... g , '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:274:12:274:94 | s().val ... g , '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:275:9:275:21 | arr.join(" ") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:13:276:15 | s() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:13:276:21 | s().val() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:13:276:28 | s().val().trim() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:13:276:51 | s().val ... g , '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:13:276:74 | s().val ... g , '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:276:13:276:95 | s().val ... g , '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:277:9:277:29 | arr2.re ... "/g,"") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:278:9:278:22 | arr2.join(" ") |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:281:6:281:29 | x.repla ... &amp;') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:282:6:282:28 | x.repla ... '&lt;') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:282:6:282:50 | x.repla ... '&gt;') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:284:6:284:30 | x.repla ... quot;') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:289:7:289:30 | y.repla ... &amp;') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:291:6:291:28 | y.repla ... '&lt;') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:291:6:291:50 | y.repla ... '&gt;') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:294:7:294:31 | y.repla ... quot;') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:300:10:300:12 | s() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:300:10:300:33 | s().rep ... ]/g,'') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:301:10:301:12 | s() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:301:10:301:32 | s().rep ... ]/g,'') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:302:10:302:12 | s() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:302:10:302:34 | s().rep ... ]/g,'') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:303:10:303:12 | s() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:303:10:303:34 | s().rep ... /g, '') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:304:9:304:11 | s() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:304:9:304:33 | s().rep ... ]/g,'') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:305:10:305:12 | s() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:305:10:305:34 | s().rep ... ]/g,'') |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:309:10:309:12 | s() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:309:10:318:3 | s().rep ... ;";\\n\\t}) |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:320:9:320:11 | s() |
| autogenerated/XssThroughDom/IncompleteSanitization/tst.js:320:9:329:3 | s().rep ... ;";\\n\\t}) |
| index.js:1:12:1:24 | require("fs") |
| index.js:3:3:3:11 | unknown() |
| index.js:4:3:4:12 | toString() |
| index.js:5:3:5:15 | fs.readFile() |
| index.js:16:11:16:31 | require ... score") |
| index.js:17:8:17:31 | require ... ocess") |
| index.js:20:3:20:12 | [].push(x) |
| index.js:21:3:21:10 | _.map(x) |
| index.js:22:3:22:12 | cp.exec(x) |
| index.js:25:18:25:36 | require('mongoose') |
| index.js:26:10:26:37 | mongoos ... , null) |
| index.js:29:3:29:32 | User.fi ... true }) |
| index.js:29:3:38:6 | User.fi ... \\n    }) |
| index.js:36:9:36:34 | console ... ers[i]) |
| index.js:44:7:44:64 | o.succe ... , x, o) |
| index.js:44:7:44:64 | reflective call |
| index.js:46:7:46:76 | o.error ... , x, o) |
| index.js:46:7:46:76 | reflective call |
| index.js:50:2:50:24 | w.setTi ... dy, 10) |