Module JndiInjectionQuery
Provides taint tracking configurations to be used in JNDI injection queries.
Import path
import semmle.code.java.security.JndiInjectionQuery
Imports
FlowSources |
Provides classes representing various flow sources for taint tracking. |
Jndi |
Provides classes and predicates for working with the Java JNDI API. |
JndiInjection |
Provides classes to reason about JNDI injection vulnerabilities. |
SpringLdap |
Provides classes and predicates for working with the Spring LDAP API. |
java |
Provides all default Java QL imports. |
Classes
JndiInjectionFlowConfig |
DEPRECATED: Use |
Modules
JndiInjectionFlowConfig |
A taint-tracking configuration for unvalidated user input that is used in JNDI lookup. |
Aliases
JndiInjectionFlow |
Tracks flow of unvalidated user input that is used in JNDI lookup |