Skip to content

Commit b123a3c

Browse files
asgerfasgerf
committed
JS: Add test
1 parent e1c810a commit b123a3c

2 files changed

Lines changed: 11 additions & 0 deletions

File tree

javascript/ql/test/query-tests/Security/CWE-601/ClientSideUrlRedirect/Consistency.expected

Lines changed: 3 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,3 @@
1+
| tst16.js:5 | expected an alert, but found none | NOT OK | ClientSideUrlRedirectConsistency |
2+
| tst16.js:6 | expected an alert, but found none | NOT OK | ClientSideUrlRedirectConsistency |
3+
| tst16.js:7 | expected an alert, but found none | NOT OK | ClientSideUrlRedirectConsistency |

javascript/ql/test/query-tests/Security/CWE-601/ClientSideUrlRedirect/tst16.js

Lines changed: 8 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,8 @@
1+
import queryString from 'query-string';
2+
import querystringify from 'querystringify';
3+
4+
function foo() {
5+
location.href = queryString.parse(location.search).data; // NOT OK
6+
location.href = queryString.extract(location.search); // NOT OK
7+
location.href = querystringify.parse(location.search).data; // NOT OK
8+
}

0 commit comments

Comments
 (0)