Module RequestForgery

Provides a taint-tracking configuration for reasoning about request forgery.

Import path

semmle.javascript.security.dataflow.RequestForgery

Imports

RemoteFlowSources

Provides a class for modelling sources of remote user input.

UrlConcatenation

Provides a class for detecting string concatenations involving the characters ? and #, which are considered sanitizers for the URL redirection queries.

Modules