Module XsltInjection
Provides classes to reason about XSLT injection vulnerabilities.
Import path
import semmle.code.java.security.XsltInjection
Imports
Classes
XsltInjectionAdditionalTaintStep | A unit class for adding additional taint steps. |
XsltInjectionSink | A data flow sink for unvalidated user input that is used in XSLT transformation. Extend this class to add your own XSLT Injection sinks. |