1
1
edges
2
2
| UnsafeRequestPath.java:20:17:20:63 | getServletPath(...) : String | UnsafeRequestPath.java:23:33:23:36 | path |
3
- | UnsafeResourceGet.java:24 :23:24 :56 | getParameter(...) : String | UnsafeResourceGet.java:31:28:31:37 | requestUrl |
4
- | UnsafeResourceGet.java:67 :24:67 :58 | getParameter(...) : String | UnsafeResourceGet.java:74 :68:74 :78 | requestPath |
5
- | UnsafeResourceGet.java:105 :23:105 :56 | getParameter(...) : String | UnsafeResourceGet.java:110:36:110:45 | requestUrl |
6
- | UnsafeResourceGet.java:143 :24:143 :58 | getParameter(...) : String | UnsafeResourceGet.java:151 :68:151 :78 | requestPath |
3
+ | UnsafeResourceGet.java:25 :23:25 :56 | getParameter(...) : String | UnsafeResourceGet.java:34:20:34:22 | url |
4
+ | UnsafeResourceGet.java:104 :24:104 :58 | getParameter(...) : String | UnsafeResourceGet.java:108 :68:108 :78 | requestPath |
5
+ | UnsafeResourceGet.java:136 :23:136 :56 | getParameter(...) : String | UnsafeResourceGet.java:143:20:143:22 | url |
6
+ | UnsafeResourceGet.java:174 :24:174 :58 | getParameter(...) : String | UnsafeResourceGet.java:182 :68:182 :78 | requestPath |
7
7
| UnsafeServletRequestDispatch.java:23:22:23:54 | getParameter(...) : String | UnsafeServletRequestDispatch.java:32:51:32:59 | returnURL |
8
8
| UnsafeServletRequestDispatch.java:42:22:42:54 | getParameter(...) : String | UnsafeServletRequestDispatch.java:48:56:48:64 | returnURL |
9
9
| UnsafeServletRequestDispatch.java:71:17:71:44 | getParameter(...) : String | UnsafeServletRequestDispatch.java:76:53:76:56 | path |
@@ -23,14 +23,14 @@ edges
23
23
nodes
24
24
| UnsafeRequestPath.java:20:17:20:63 | getServletPath(...) : String | semmle.label | getServletPath(...) : String |
25
25
| UnsafeRequestPath.java:23:33:23:36 | path | semmle.label | path |
26
- | UnsafeResourceGet.java:24 :23:24 :56 | getParameter(...) : String | semmle.label | getParameter(...) : String |
27
- | UnsafeResourceGet.java:31:28:31:37 | requestUrl | semmle.label | requestUrl |
28
- | UnsafeResourceGet.java:67 :24:67 :58 | getParameter(...) : String | semmle.label | getParameter(...) : String |
29
- | UnsafeResourceGet.java:74 :68:74 :78 | requestPath | semmle.label | requestPath |
30
- | UnsafeResourceGet.java:105 :23:105 :56 | getParameter(...) : String | semmle.label | getParameter(...) : String |
31
- | UnsafeResourceGet.java:110:36:110:45 | requestUrl | semmle.label | requestUrl |
32
- | UnsafeResourceGet.java:143 :24:143 :58 | getParameter(...) : String | semmle.label | getParameter(...) : String |
33
- | UnsafeResourceGet.java:151 :68:151 :78 | requestPath | semmle.label | requestPath |
26
+ | UnsafeResourceGet.java:25 :23:25 :56 | getParameter(...) : String | semmle.label | getParameter(...) : String |
27
+ | UnsafeResourceGet.java:34:20:34:22 | url | semmle.label | url |
28
+ | UnsafeResourceGet.java:104 :24:104 :58 | getParameter(...) : String | semmle.label | getParameter(...) : String |
29
+ | UnsafeResourceGet.java:108 :68:108 :78 | requestPath | semmle.label | requestPath |
30
+ | UnsafeResourceGet.java:136 :23:136 :56 | getParameter(...) : String | semmle.label | getParameter(...) : String |
31
+ | UnsafeResourceGet.java:143:20:143:22 | url | semmle.label | url |
32
+ | UnsafeResourceGet.java:174 :24:174 :58 | getParameter(...) : String | semmle.label | getParameter(...) : String |
33
+ | UnsafeResourceGet.java:182 :68:182 :78 | requestPath | semmle.label | requestPath |
34
34
| UnsafeServletRequestDispatch.java:23:22:23:54 | getParameter(...) : String | semmle.label | getParameter(...) : String |
35
35
| UnsafeServletRequestDispatch.java:32:51:32:59 | returnURL | semmle.label | returnURL |
36
36
| UnsafeServletRequestDispatch.java:42:22:42:54 | getParameter(...) : String | semmle.label | getParameter(...) : String |
@@ -61,10 +61,10 @@ nodes
61
61
subpaths
62
62
#select
63
63
| UnsafeRequestPath.java:23:33:23:36 | path | UnsafeRequestPath.java:20:17:20:63 | getServletPath(...) : String | UnsafeRequestPath.java:23:33:23:36 | path | Potentially untrusted URL forward due to $@. | UnsafeRequestPath.java:20:17:20:63 | getServletPath(...) | user-provided value |
64
- | UnsafeResourceGet.java:31:28:31:37 | requestUrl | UnsafeResourceGet.java:24 :23:24 :56 | getParameter(...) : String | UnsafeResourceGet.java:31:28:31:37 | requestUrl | Potentially untrusted URL forward due to $@. | UnsafeResourceGet.java:24 :23:24 :56 | getParameter(...) | user-provided value |
65
- | UnsafeResourceGet.java:74 :68:74 :78 | requestPath | UnsafeResourceGet.java:67 :24:67 :58 | getParameter(...) : String | UnsafeResourceGet.java:74 :68:74 :78 | requestPath | Potentially untrusted URL forward due to $@. | UnsafeResourceGet.java:67 :24:67 :58 | getParameter(...) | user-provided value |
66
- | UnsafeResourceGet.java:110:36:110:45 | requestUrl | UnsafeResourceGet.java:105 :23:105 :56 | getParameter(...) : String | UnsafeResourceGet.java:110:36:110:45 | requestUrl | Potentially untrusted URL forward due to $@. | UnsafeResourceGet.java:105 :23:105 :56 | getParameter(...) | user-provided value |
67
- | UnsafeResourceGet.java:151 :68:151 :78 | requestPath | UnsafeResourceGet.java:143 :24:143 :58 | getParameter(...) : String | UnsafeResourceGet.java:151 :68:151 :78 | requestPath | Potentially untrusted URL forward due to $@. | UnsafeResourceGet.java:143 :24:143 :58 | getParameter(...) | user-provided value |
64
+ | UnsafeResourceGet.java:34:20:34:22 | url | UnsafeResourceGet.java:25 :23:25 :56 | getParameter(...) : String | UnsafeResourceGet.java:34:20:34:22 | url | Potentially untrusted URL forward due to $@. | UnsafeResourceGet.java:25 :23:25 :56 | getParameter(...) | user-provided value |
65
+ | UnsafeResourceGet.java:108 :68:108 :78 | requestPath | UnsafeResourceGet.java:104 :24:104 :58 | getParameter(...) : String | UnsafeResourceGet.java:108 :68:108 :78 | requestPath | Potentially untrusted URL forward due to $@. | UnsafeResourceGet.java:104 :24:104 :58 | getParameter(...) | user-provided value |
66
+ | UnsafeResourceGet.java:143:20:143:22 | url | UnsafeResourceGet.java:136 :23:136 :56 | getParameter(...) : String | UnsafeResourceGet.java:143:20:143:22 | url | Potentially untrusted URL forward due to $@. | UnsafeResourceGet.java:136 :23:136 :56 | getParameter(...) | user-provided value |
67
+ | UnsafeResourceGet.java:182 :68:182 :78 | requestPath | UnsafeResourceGet.java:174 :24:174 :58 | getParameter(...) : String | UnsafeResourceGet.java:182 :68:182 :78 | requestPath | Potentially untrusted URL forward due to $@. | UnsafeResourceGet.java:174 :24:174 :58 | getParameter(...) | user-provided value |
68
68
| UnsafeServletRequestDispatch.java:32:51:32:59 | returnURL | UnsafeServletRequestDispatch.java:23:22:23:54 | getParameter(...) : String | UnsafeServletRequestDispatch.java:32:51:32:59 | returnURL | Potentially untrusted URL forward due to $@. | UnsafeServletRequestDispatch.java:23:22:23:54 | getParameter(...) | user-provided value |
69
69
| UnsafeServletRequestDispatch.java:48:56:48:64 | returnURL | UnsafeServletRequestDispatch.java:42:22:42:54 | getParameter(...) : String | UnsafeServletRequestDispatch.java:48:56:48:64 | returnURL | Potentially untrusted URL forward due to $@. | UnsafeServletRequestDispatch.java:42:22:42:54 | getParameter(...) | user-provided value |
70
70
| UnsafeServletRequestDispatch.java:76:53:76:56 | path | UnsafeServletRequestDispatch.java:71:17:71:44 | getParameter(...) : String | UnsafeServletRequestDispatch.java:76:53:76:56 | path | Potentially untrusted URL forward due to $@. | UnsafeServletRequestDispatch.java:71:17:71:44 | getParameter(...) | user-provided value |
0 commit comments