CodeQL library for C#
codeql/csharp-all 3.0.1-dev (changelog, source)
Search

Module XSSQuery

Provides a taint-tracking configuration for reasoning about cross-site scripting (XSS) vulnerabilities.

Import path

import semmle.code.csharp.security.dataflow.XSSQuery

Imports

csharp

The default C# QL library.

Predicates

xssFlow

Holds if there is tainted flow from source to sink that may lead to a cross-site scripting (XSS) vulnerability, with message providing a description of the source. This is the main predicate to use in XSS queries.

Classes

Sanitizer

A sanitizer for cross-site scripting (XSS) vulnerabilities.

Source

A data flow source for cross-site scripting (XSS) vulnerabilities.

XssAspNode

An ASP inline code element, viewed as an XSS flow node.

XssDataFlowNode

A data flow node, viewed as an XSS flow node.

XssNode

A flow node for tracking cross-site scripting (XSS) vulnerabilities. Can be a standard data flow node (XssDataFlowNode) or an ASP inline code element (XssAspNode).

Modules

PathGraph

Provides the query predicates needed to include a graph in a path-problem query.

XssTrackingConfig

A taint-tracking configuration for cross-site scripting (XSS) vulnerabilities.

Aliases

XssTracking

Constructs a global taint tracking computation.