hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-03-27 17:58:17 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
eed2df0fb319f771b9fa9913237829af73ee8ae5
codeql/java/ql/lib/semmle/code/java/security/JexlInjectionSinkModels.qll

44 lines
3.2 KiB
Plaintext
Raw Blame History

/** Provides sink models relating to Expression Language (JEXL) injection vulnerabilities. */
private import semmle.code.java.dataflow.ExternalFlow
private class DefaultJexlInjectionSinkModel extends SinkModelCsv {
override predicate row(string row) {
row =
[
// JEXL2
"org.apache.commons.jexl2;JexlEngine;false;getProperty;(JexlContext,Object,String);;Argument[2];jexl;manual",
"org.apache.commons.jexl2;JexlEngine;false;getProperty;(Object,String);;Argument[1];jexl;manual",
"org.apache.commons.jexl2;JexlEngine;false;setProperty;(JexlContext,Object,String,Object);;Argument[2];jexl;manual",
"org.apache.commons.jexl2;JexlEngine;false;setProperty;(Object,String,Object);;Argument[1];jexl;manual",
"org.apache.commons.jexl2;Expression;false;evaluate;;;Argument[-1];jexl;manual",
"org.apache.commons.jexl2;Expression;false;callable;;;Argument[-1];jexl;manual",
"org.apache.commons.jexl2;JexlExpression;false;evaluate;;;Argument[-1];jexl;manual",
"org.apache.commons.jexl2;JexlExpression;false;callable;;;Argument[-1];jexl;manual",
"org.apache.commons.jexl2;Script;false;execute;;;Argument[-1];jexl;manual",
"org.apache.commons.jexl2;Script;false;callable;;;Argument[-1];jexl;manual",
"org.apache.commons.jexl2;JexlScript;false;execute;;;Argument[-1];jexl;manual",
"org.apache.commons.jexl2;JexlScript;false;callable;;;Argument[-1];jexl;manual",
"org.apache.commons.jexl2;UnifiedJEXL$Expression;false;evaluate;;;Argument[-1];jexl;manual",
"org.apache.commons.jexl2;UnifiedJEXL$Expression;false;prepare;;;Argument[-1];jexl;manual",
"org.apache.commons.jexl2;UnifiedJEXL$Template;false;evaluate;;;Argument[-1];jexl;manual",
// JEXL3
"org.apache.commons.jexl3;JexlEngine;false;getProperty;(JexlContext,Object,String);;Argument[2];jexl;manual",
"org.apache.commons.jexl3;JexlEngine;false;getProperty;(Object,String);;Argument[1];jexl;manual",
"org.apache.commons.jexl3;JexlEngine;false;setProperty;(JexlContext,Object,String);;Argument[2];jexl;manual",
"org.apache.commons.jexl3;JexlEngine;false;setProperty;(Object,String,Object);;Argument[1];jexl;manual",
"org.apache.commons.jexl3;Expression;false;evaluate;;;Argument[-1];jexl;manual",
"org.apache.commons.jexl3;Expression;false;callable;;;Argument[-1];jexl;manual",
"org.apache.commons.jexl3;JexlExpression;false;evaluate;;;Argument[-1];jexl;manual",
"org.apache.commons.jexl3;JexlExpression;false;callable;;;Argument[-1];jexl;manual",
"org.apache.commons.jexl3;Script;false;execute;;;Argument[-1];jexl;manual",
"org.apache.commons.jexl3;Script;false;callable;;;Argument[-1];jexl;manual",
"org.apache.commons.jexl3;JexlScript;false;execute;;;Argument[-1];jexl;manual",
"org.apache.commons.jexl3;JexlScript;false;callable;;;Argument[-1];jexl;manual",
"org.apache.commons.jexl3;JxltEngine$Expression;false;evaluate;;;Argument[-1];jexl;manual",
"org.apache.commons.jexl3;JxltEngine$Expression;false;prepare;;;Argument[-1];jexl;manual",
"org.apache.commons.jexl3;JxltEngine$Template;false;evaluate;;;Argument[-1];jexl;manual"
]
}
}
Reference in New Issue View Git Blame Copy Permalink