Query module IncompleteSanitization
- Incomplete string escaping or encoding
- A string transformer that does not replace or escape all occurrences of a meta-character may be ineffective.
- correctness security external/cwe/cwe-116 external/cwe/cwe-20
Holds if data flowing into
Gets a constant matched by
Gets a string matched by
Gets a character that is commonly used as a meta-character.