Skip to content

Commit b51c136

Browse files
lcarteylcartey
committed
Java: Add taint step to flow through Spring tainted user data class
getters.
1 parent 7ac1f41 commit b51c136

File tree

1 file changed

+4
-0
lines changed

1 file changed

+4
-0
lines changed

java/ql/src/semmle/code/java/dataflow/internal/TaintTrackingUtil.qll

Lines changed: 4 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -383,6 +383,10 @@ private predicate taintPreservingQualifierToMethod(Method m) {
383383
)
384384
or
385385
m instanceof StringReplaceMethod
386+
or
387+
exists(SpringUntrustedDataType dt |
388+
m.(GetterMethod) = dt.getAMethod()
389+
)
386390
}
387391

388392
private class StringReplaceMethod extends Method {

0 commit comments

Comments
 (0)