Predicate XSS::XSS::xssFlow

Holds if there is tainted flow from source to sink that may lead to a cross-site scripting (XSS) vulnerability, with message providing a description of the source. This is the main predicate to use in XSS queries.

predicate xssFlow(XssNode source, XssNode sink, string message)