Module XpathInjection
Import path
import semmle.javascript.security.dataflow.XpathInjectionCustomizations
Classes
DocumentUrlSource | A part of the document URL, considered as a flow source for XPath injection. |
DomXpathSink | The |
RemoteSource | A source of remote user input, considered as a flow source for XPath injection. |
Sanitizer | A sanitizer for untrusted user input used in XPath expression. |
Sink | A data flow sink for untrusted user input used in XPath expression. |
Source | A data flow source for untrusted user input used in XPath expression. |
XpathParseSelectSink | The |