Module Model

Import path

semmle.python.web.django.Model

Imports

Basic
Http
TaintTracking

Python Taint Tracking Library

python

Classes

DjangoDbTableObjects

A “taint” for django database tables

DjangoModel

A django model class

DjangoModelDirectObjectReference

A direct reference to a django model object, which is a vulnerable to external data.

DjangoModelExtraCall

A call to the extra method on a django model. This allows a raw SQL query to be sent to the database, which is a security risk.

DjangoModelFieldWrite

A write to a field of a django model, which is a vulnerable to external data.

DjangoModelObjects

Django model objects, which are sources of django database table “taint”

DjangoModelRawCall

A call to the raw method on a django model. This allows a raw SQL query to be sent to the database, which is a security risk.