C++: Add a model for curl as well.

geoffw0 · geoffw0 · commit ef21d1b51293 · 2021-11-09T19:32:43.000Z
diff --git a/cpp/ql/src/Security/CWE/CWE-319/UseOfHttp.ql b/cpp/ql/src/Security/CWE/CWE-319/UseOfHttp.ql
@@ -60,6 +60,9 @@ class HttpStringToUrlOpenConfig extends TaintTracking::Configuration {
       fc.getTarget().getName() = ["send", "URLDownloadToFile"] and
       sink.asExpr() = fc.getArgument(1)
       or
+      fc.getTarget().getName() = "curl_easy_setopt" and
+      sink.asExpr() = fc.getArgument(2)
+      or
       fc.getTarget().getName() = "ShellExecute" and
       sink.asExpr() = fc.getArgument(3)
     )
