queries/php: add injections for regex and sql injection (#6250)
This commit is contained in:
parent
1661e4b5e1
commit
3907358103
1 changed files with 19 additions and 0 deletions
|
@ -4,3 +4,22 @@
|
|||
|
||||
((comment) @injection.content
|
||||
(#set! injection.language "comment"))
|
||||
|
||||
((function_call_expression
|
||||
function: (name) @_function
|
||||
arguments: (arguments . (argument (_ (string_value) @injection.content))))
|
||||
(#match? @_function "^preg_")
|
||||
(#set! injection.language "regex"))
|
||||
|
||||
((function_call_expression
|
||||
function: (name) @_function
|
||||
arguments: (arguments (_) (argument (_ (string_value) @injection.content))))
|
||||
(#match? @_function "^mysqli_")
|
||||
(#set! injection.language "sql"))
|
||||
|
||||
((member_call_expression
|
||||
object: (_)
|
||||
name: (name) @_function
|
||||
arguments: (arguments . (argument (_ (string_value) @injection.content))))
|
||||
(#match? @_function "^(prepare|query)$")
|
||||
(#set! injection.language "sql"))
|
||||
|
|
Loading…
Reference in a new issue