Thanks to visit codestin.com
Credit goes to github.com

Skip to content

Commit c77c7b0

Browse files
haby0smowton
haby0
and
smowton
authored
Update java/ql/src/experimental/Security/CWE/CWE-352/JsonpInjectionLib.qll
Co-authored-by: Chris Smowton <[email protected]>
1 parent 837f201 commit c77c7b0

1 file changed

Lines changed: 6 additions & 1 deletion

File tree

java/ql/src/experimental/Security/CWE/CWE-352/JsonpInjectionLib.qll

Lines changed: 6 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -27,7 +27,12 @@ class VerificationMethodToIfFlowConfig extends DataFlow3::Configuration {
2727
}
2828
}
2929

30-
/** Taint-tracking configuration tracing flow from untrusted inputs to verification of remote user input. */
30+
/** Taint-tracking configuration tracing flow from untrusted inputs to an argument of a function whose result is used as an if-statement condition.
31+
*
32+
* For example, in the context `String userControlled = request.getHeader("xyz"); boolean isGood = checkToken(userControlled); if(isGood) { ...`,
33+
* the flow from `checkToken`'s result to the condition of `if(isGood)` matches the configuration `VerificationMethodToIfFlowConfig` above,
34+
* and so the flow from `getHeader(...)` to the argument to `checkToken` matches this configuration.
35+
*/
3136
class VerificationMethodFlowConfig extends TaintTracking2::Configuration {
3237
VerificationMethodFlowConfig() { this = "VerificationMethodFlowConfig" }
3338

0 commit comments

Comments
 (0)