Module XSSQuery

Provides a taint-tracking configuration for reasoning about cross-site scripting (XSS) vulnerabilities.

Import path

import semmle.code.csharp.security.dataflow.XSSQuery

Imports

The default C# QL library.

Predicates

Holds if there is tainted flow from source to sink that may lead to a cross-site scripting (XSS) vulnerability, with message providing a description of the source. This is the main predicate to use in XSS queries.

Classes

Sanitizer	A sanitizer for cross-site scripting (XSS) vulnerabilities.
Source	A data flow source for cross-site scripting (XSS) vulnerabilities.
TaintTrackingConfiguration	DEPRECATED: Use `XssTracking` instead.
XssAspNode	An ASP inline code element, viewed as an XSS flow node.
XssDataFlowNode	A data flow node, viewed as an XSS flow node.
XssNode	A flow node for tracking cross-site scripting (XSS) vulnerabilities. Can be a standard data flow node (`XssDataFlowNode`) or an ASP inline code element (`XssAspNode`).

Modules

PathGraph	Provides the query predicates needed to include a graph in a path-problem query.
XssTrackingConfig	A taint-tracking configuration for cross-site scripting (XSS) vulnerabilities.

Aliases

XssTracking

Constructs a global taint tracking computation.