Module XMLEntityInjectionQuery

Provides a taint-tracking configuration for reasoning about untrusted user input used in XML processing

Import path

import semmle.code.csharp.security.dataflow.XMLEntityInjectionQuery

The default C# QL library.

Sanitizer	A sanitizer for untrusted user input used in XML processing.
Sink	A data flow sink for untrusted user input used in XML processing.
Source	A data flow source for untrusted user input used in XML processing.

A taint-tracking module for untrusted user input used in XML processing.