Query module CommandInjection

name
Uncontrolled command line
description
Using externally controlled strings in a command line may allow a malicious user to change the meaning of the command.
kind
path-problem
problem.severity
error
sub-severity
high
precision
high
id
py/command-line-injection
tags
correctness security external/owasp/owasp-a1 external/cwe/cwe-078 external/cwe/cwe-088

Imports

Command

Provides class and predicates to track external data that may represent malicious OS commands.

HttpRequest
Paths
python