Merge pull request github#5330 from RasmusWL/fix-flask-taint-prop-to-methods

codeql-ci · web-flow · commit a55246c9f45a · 2021-03-05T03:17:41.000-08:00
Approved by yoff
diff --git a/python/ql/src/semmle/python/frameworks/Flask.qll b/python/ql/src/semmle/python/frameworks/Flask.qll
@@ -351,7 +351,8 @@ module Flask {
       exists(string method_name | method_name in ["get_data", "get_json"] |
         // Method access
         nodeFrom = request().getAUse() and
-        nodeTo = request().getMember(method_name).getAnImmediateUse()
+        nodeTo.(DataFlow::AttrRead).getObject() = nodeFrom and
+        nodeTo.(DataFlow::AttrRead).getAttributeName() = method_name
         or
         // Method call
         nodeFrom = request().getMember(method_name).getAUse() and
