CodeQL library for C#
codeql/csharp-all 3.0.1-dev (changelog, source)
Search

Module XmlEntityInjection

A taint-tracking module for untrusted user input used in XML processing.

Import path

import semmle.code.csharp.security.dataflow.XMLEntityInjectionQuery

Imports

Global<XMLEntityInjectionQuery::XmlEntityInjectionConfig>

Constructs a global taint tracking computation.

Predicates

flowPath

Holds if data can flow from source to sink.

Aliases

Super

Constructs a global taint tracking computation.