CodeQL library for C#
codeql/csharp-all 4.0.1-dev (changelog, source)
Search

Module XMLEntityInjectionQuery

Provides a taint-tracking configuration for reasoning about untrusted user input used in XML processing

Import path

import semmle.code.csharp.security.dataflow.XMLEntityInjectionQuery

Imports

csharp

The default C# QL library.

Classes

Sanitizer

A sanitizer for untrusted user input used in XML processing.

Sink

A data flow sink for untrusted user input used in XML processing.

Source

A data flow source for untrusted user input used in XML processing.

Modules

XmlEntityInjection

A taint-tracking module for untrusted user input used in XML processing.