Module ClientSideUrlRedirect

Provides a taint-tracking configuration for reasoning about unvalidated URL redirection problems on the client side.

Note, for performance reasons: only import this file if ClientSideUrlRedirect::Configuration is needed, otherwise ClientSideUrlRedirectCustomizations should be imported instead.

Import path

import semmle.javascript.security.dataflow.ClientSideUrlRedirect

Imports

RemoteFlowSources	Provides a class for modelling sources of remote user input.
UrlConcatenation	Provides a class for detecting string concatenations involving the characters `?` and `#`, which are considered sanitizers for the URL redirection queries.
javascript	Provides classes for working with JavaScript programs, as well as JSON, YAML and HTML.

Modules

ClientSideUrlRedirect