This repository contains different source code patterns that are problematic for static code analysis tools. The patterns are the result from following publications:
Schuckert Felix, Basel Katt, and Hanno Langweg. "Difficult XSS Code Patterns for Static Code Analysis Tools." Computer Security. Springer, Cham, 2019. 123-139.
Schuckert Felix, Basel Katt, and Hanno Langweg. "Diffcult SQLi Code Patterns for Static Code Analysis Tools." Norsk IKT-konferanse for forskning og utdanning. No. 3. 2020.
The location of the source and the sink is noted in the corresponding info.txt file.
The exploits are seen in the corresponding info.txt file.