CodeQL library for JavaScript
Search

Module ClientSideUrlRedirectQuery

Provides a taint-tracking configuration for reasoning about unvalidated URL redirection problems on the client side.

Note, for performance reasons: only import this file if ClientSideUrlRedirect::Configuration is needed, otherwise ClientSideUrlRedirectCustomizations should be imported instead.

Import path

import semmle.javascript.security.dataflow.ClientSideUrlRedirectQuery

Imports

ClientSideUrlRedirect
RemoteFlowSources

Provides a class for modelling sources of remote user input.

UrlConcatenation

Provides a class for detecting string concatenations involving the characters ? and #, which are considered sanitizers for the URL redirection queries.

javascript

Provides classes for working with JavaScript programs, as well as JSON, YAML and HTML.

Classes

Configuration

A taint-tracking configuration for reasoning about unvalidated URL redirections.

ElectronShellOpenExternalSink

Improper use of openExternal can be leveraged to compromise the user’s host. When openExternal is used with untrusted content, it can be leveraged to execute arbitrary commands.