Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Flow sensitive analysis #58

Open
projectrvce opened this issue Apr 8, 2019 · 1 comment
Open

Flow sensitive analysis #58

projectrvce opened this issue Apr 8, 2019 · 1 comment
Assignees
@meadisu27
Labels
bug

Comments

@projectrvce
Copy link

Consider the following code snippet:

string id1 = Console.ReadLine();
string query1 = "Select *from families where id = "+id1;
SqlCommand cmd = new SqlCommand(query1); //shows diagnostic since id1 is tainted
query1 = "select *from families"; // query1 redefined
SqlCommand cmd1 = new SqlCommand(query1); //still shows diagnostic even though query1
doesnt have any user input now(redefined)
i.e if the querystring(query) has tainted value and is redefined, it still considers the first assigned value.
Can you please let me know how to resolve this issue ? It would be great help for our project.
Thanks in advance!!!
@ejohn20 ejohn20 added the bug label Apr 11, 2019
@ejohn20
Copy link
Member

ejohn20 commented Apr 11, 2019

Looks like a false positive that should be suppressed. We can file this and see if the code block analyzer can be enhanced to address the reassignment locally.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@meadisu27 meadisu27

Labels
bug
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@meadisu27 @ejohn20 @projectrvce