Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

CodeQL query to detect Unified EL injections #71

Closed
ggolawski opened this issue Apr 22, 2020 · 1 comment
Closed

CodeQL query to detect Unified EL injections #71

ggolawski opened this issue Apr 22, 2020 · 1 comment
Labels

Comments

@ggolawski
Copy link

@ggolawski ggolawski commented Apr 22, 2020

CVE ID(s)

There's no CVE for this.

Report

I created a query to detect Unified EL (javax.el) injections in Java code. The query raises a flag if user-provided expression is evaluated. ExpressionFactory.createValueExpression, ExpressionFactory.createMethodExpression and ELProcessor are supported.

The details are present in PR: github/codeql#3323

  • Are you planning to discuss this vulnerability submission publicly? (Blog Post, social networks, etc). We would love to have you spread the word about the good work you are doing
@xcorail
Copy link
Contributor

@xcorail xcorail commented Jun 19, 2020

Hi @ggolawski ,

Thanks for the submission! We have reviewed your report and validated your findings. After internally assessing the findings and the query we have determined this query does not catch any true positive and is therefore not eligible for a reward under the Bug Bounty program.

Looking forward to your next submissions!

Best regards and happy hacking!

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
Linked pull requests

Successfully merging a pull request may close this issue.

None yet
2 participants
You can’t perform that action at this time.