Predicate UnsafeHtmlConstruction :: domBasedTaintStep
Holds if there is a taint step from pred
to succ
for DOM strings/nodes.
These steps are mostly relevant for DOM nodes that are created by an XML parser.
Import path
import semmle.javascript.security.dataflow.UnsafeHtmlConstructionCustomizations
predicate
domBasedTaintStep
(
Node
pred
,
SourceNode
succ
)