Skip to content

Commit

Permalink
Update go/ql/src/experimental/CWE-525/WebCacheDeception.ql
Browse files Browse the repository at this point in the history 
Co-authored-by: Owen Mansel-Chan <62447351+owen-mc@users.noreply.github.com>
  • Loading branch information
@aydinnyunus @owen-mc
aydinnyunus and owen-mc authored Nov 15, 2023
1 parent 74f1344 commit fa1fa0d
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion go/ql/src/experimental/CWE-525/WebCacheDeception.ql
View file
Original file line number Diff line number Diff line change
Expand Up @@ -19,7 +19,7 @@ where
httpHandleFuncCall.getTarget().hasQualifiedName("net/http", "HandleFunc") and
httpHandleFuncCall.getNumArgument() > 1 and
httpHandleFuncCall.getArgument(0).getType().getUnderlyingType() = StringType and
httpHandleFuncCall.getArgument(0).toString().matches("%/\"") and
httpHandleFuncCall.getArgument(0).getStringValue().matches("%/\"") and
// Trace the second argument's data flow to its predecessor
predecessor = httpHandleFuncCall.getArgument(1).getAPredecessor() and
// Find the corresponding expression for the predecessor
Expand Down

0 comments on commit fa1fa0d

Please sign in to comment.