Query module CodeInjection

name
Code injection
description
Interpreting unsanitized user input as code allows a malicious user arbitrary code execution.
kind
path-problem
problem.severity
error
sub-severity
high
precision
high
id
py/code-injection
tags
security external/owasp/owasp-a1 external/cwe/cwe-094 external/cwe/cwe-079 external/cwe/cwe-116

Imports

Exec

Provides class and predicates to track external data that may represent malicious Python code.

HttpRequest
Paths
python