Module ReflectedXss

Provides a taint-tracking configuration for reasoning about reflected cross-site scripting vulnerabilities.

Import path

semmle.javascript.security.dataflow.ReflectedXss

Imports

RemoteFlowSources

Provides a class for modelling sources of remote user input.

jQuery

Provides classes for working with jQuery code.

javascript

Provides classes for working with JavaScript programs, as well as JSON, YAML and HTML.

Modules

Aliases

XssDataFlowConfiguration

DEPRECATED: Use ReflectedXss::Configuration instead.

XssSanitizer

DEPRECATED: Use ReflectedXss::Sanitizer instead.

XssSink

DEPRECATED: Use ReflectedXss::Sink instead.

XssSource

DEPRECATED: Use ReflectedXss::Source instead.