Class UrlRedirect::UrlRedirect::ConcatenationSanitizer

A string concatenation expression, where the left hand side contains the character “?”.

This is considered as sanitizing the overall expression, because the attacker can then only control the query string parameters, rather than the location itself. In the majority of cases, this will only allow the attacker to redirect the user to a link they could have already redirected them to.

Direct supertypes

Indirect supertypes

Inherited fields

Inherited predicates

asExpr

Gets the expression corresponding to this node, if any.

from Node
asParameter

Gets the parameter corresponding to this node, if any.

from Node
getEnclosingCallable

Gets the enclosing callable of this node.

from ExprNode
getExpr

Gets the expression corresponding to this node.

from ExprNode
getLocation

Gets the location of this node.

from ExprNode
getType

Gets the type of this node.

from ExprNode
toString

Gets a textual representation of this node.

from ExprNode

Charpred