Module Xxe

Provides a taint tracking configuration for reasoning about XML External Entity (XXE) vulnerabilities.

Import path

semmle.javascript.security.dataflow.Xxe

Imports

DOM

Provides predicates for reasoning about DOM types.

javascript

Provides classes for working with JavaScript programs, as well as JSON, YAML and HTML.

Modules

Aliases

XxeSanitizer

DEPRECATED: Use Xxe::Sanitizer instead.

XxeSink

DEPRECATED: Use Xxe::Sink instead.

XxeSource

DEPRECATED: Use Xxe::Source instead.

XxeTrackingConfig

DEPRECATED: Use Xxe::Configuration instead.