@@ -187,10 +187,10 @@ nodes
187
187
| C.java:85:54:85:67 | serializedData : byte[] | semmle.label | serializedData : byte[] |
188
188
| C.java:87:3:87:13 | burlapInput | semmle.label | burlapInput |
189
189
| C.java:91:3:91:14 | burlapInput1 | semmle.label | burlapInput1 |
190
- | FlexjsonServlet.java:28 :50:28 :64 | getReader(...) | semmle.label | getReader(...) |
191
- | FlexjsonServlet.java:35 :53:35 :67 | getReader(...) | semmle.label | getReader(...) |
192
- | FlexjsonServlet.java:43 :53:43 :67 | getReader(...) | semmle.label | getReader(...) |
193
- | FlexjsonServlet.java:51 :53:51 :67 | getReader(...) | semmle.label | getReader(...) |
190
+ | FlexjsonServlet.java:29 :50:29 :64 | getReader(...) | semmle.label | getReader(...) |
191
+ | FlexjsonServlet.java:36 :53:36 :67 | getReader(...) | semmle.label | getReader(...) |
192
+ | FlexjsonServlet.java:44 :53:44 :67 | getReader(...) | semmle.label | getReader(...) |
193
+ | FlexjsonServlet.java:52 :53:52 :67 | getReader(...) | semmle.label | getReader(...) |
194
194
| GsonActivity.java:15:35:15:97 | (...)... : Parcelable | semmle.label | (...)... : Parcelable |
195
195
| GsonActivity.java:15:54:15:64 | getIntent(...) : Intent | semmle.label | getIntent(...) : Intent |
196
196
| GsonServlet.java:39:23:39:46 | getParameter(...) : String | semmle.label | getParameter(...) : String |
@@ -258,10 +258,10 @@ nodes
258
258
| C.java:79:3:79:72 | unmarshal(...) | C.java:79:43:79:70 | getParameter(...) : String | C.java:79:26:79:71 | new StringReader(...) | Unsafe deserialization of $@. | C.java:79:43:79:70 | getParameter(...) | user input |
259
259
| C.java:87:3:87:26 | readObject(...) | C.java:84:27:84:54 | getParameter(...) : String | C.java:87:3:87:13 | burlapInput | Unsafe deserialization of $@. | C.java:84:27:84:54 | getParameter(...) | user input |
260
260
| C.java:91:3:91:27 | readObject(...) | C.java:84:27:84:54 | getParameter(...) : String | C.java:91:3:91:14 | burlapInput1 | Unsafe deserialization of $@. | C.java:84:27:84:54 | getParameter(...) | user input |
261
- | FlexjsonServlet.java:28 :25:28 :79 | deserialize(...) | FlexjsonServlet.java:28 :50:28 :64 | getReader(...) | FlexjsonServlet.java:28 :50:28 :64 | getReader(...) | Unsafe deserialization of $@. | FlexjsonServlet.java:28 :50:28 :64 | getReader(...) | user input |
262
- | FlexjsonServlet.java:35 :28:35 :68 | deserialize(...) | FlexjsonServlet.java:35 :53:35 :67 | getReader(...) | FlexjsonServlet.java:35 :53:35 :67 | getReader(...) | Unsafe deserialization of $@. | FlexjsonServlet.java:35 :53:35 :67 | getReader(...) | user input |
263
- | FlexjsonServlet.java:43 :28:43 :68 | deserialize(...) | FlexjsonServlet.java:43 :53:43 :67 | getReader(...) | FlexjsonServlet.java:43 :53:43 :67 | getReader(...) | Unsafe deserialization of $@. | FlexjsonServlet.java:43 :53:43 :67 | getReader(...) | user input |
264
- | FlexjsonServlet.java:51 :28:51 :82 | deserialize(...) | FlexjsonServlet.java:51 :53:51 :67 | getReader(...) | FlexjsonServlet.java:51 :53:51 :67 | getReader(...) | Unsafe deserialization of $@. | FlexjsonServlet.java:51 :53:51 :67 | getReader(...) | user input |
261
+ | FlexjsonServlet.java:29 :25:29 :79 | deserialize(...) | FlexjsonServlet.java:29 :50:29 :64 | getReader(...) | FlexjsonServlet.java:29 :50:29 :64 | getReader(...) | Unsafe deserialization of $@. | FlexjsonServlet.java:29 :50:29 :64 | getReader(...) | user input |
262
+ | FlexjsonServlet.java:36 :28:36 :68 | deserialize(...) | FlexjsonServlet.java:36 :53:36 :67 | getReader(...) | FlexjsonServlet.java:36 :53:36 :67 | getReader(...) | Unsafe deserialization of $@. | FlexjsonServlet.java:36 :53:36 :67 | getReader(...) | user input |
263
+ | FlexjsonServlet.java:44 :28:44 :68 | deserialize(...) | FlexjsonServlet.java:44 :53:44 :67 | getReader(...) | FlexjsonServlet.java:44 :53:44 :67 | getReader(...) | Unsafe deserialization of $@. | FlexjsonServlet.java:44 :53:44 :67 | getReader(...) | user input |
264
+ | FlexjsonServlet.java:52 :28:52 :82 | deserialize(...) | FlexjsonServlet.java:52 :53:52 :67 | getReader(...) | FlexjsonServlet.java:52 :53:52 :67 | getReader(...) | Unsafe deserialization of $@. | FlexjsonServlet.java:52 :53:52 :67 | getReader(...) | user input |
265
265
| GsonServlet.java:44:26:44:66 | fromJson(...) | GsonServlet.java:39:23:39:46 | getParameter(...) : String | GsonServlet.java:44:40:44:43 | json | Unsafe deserialization of $@. | GsonServlet.java:39:23:39:46 | getParameter(...) | user input |
266
266
| GsonServlet.java:60:26:60:66 | fromJson(...) | GsonServlet.java:53:23:53:46 | getParameter(...) : String | GsonServlet.java:60:40:60:43 | json | Unsafe deserialization of $@. | GsonServlet.java:53:23:53:46 | getParameter(...) | user input |
267
267
| JabsorbServlet.java:102:32:102:93 | unmarshall(...) | JabsorbServlet.java:89:23:89:46 | getParameter(...) : String | JabsorbServlet.java:102:83:102:92 | jsonObject | Unsafe deserialization of $@. | JabsorbServlet.java:89:23:89:46 | getParameter(...) | user input |
0 commit comments