js taint tracking libs - add unescape
as taint propagator
#19003
Labels
question
Further information is requested
unescape
as taint propagator
#19003
As far as I can tell unescape is not modeled as a string propagator in
codeql/javascript/ql/lib/semmle/javascript/dataflow/TaintTracking.qll
Line 447 in 795a2e1
I am curious if this is intended and if so, what is the reason for this given that decodeURIComponent is modeled as taint preserving.
Thanks!
The text was updated successfully, but these errors were encountered: