Add tests for command injection via locals

which should be medium confidence warnings

Add tests for command injection via locals
which should be medium confidence warnings
480d55c9 · Justin Collins · c0b87152 · 480d55c9 · 480d55c9
隐藏空白更改
内联并排

Showing with 24 addition and 1 deletion

test/apps/rails3/app/controllers/other_controller.rb test/apps/rails3/app/controllers/other_controller.rb +5 -0

test/tests/test_rails3.rb test/tests/test_rails3.rb +19 -1

未找到文件。
--- a/test/apps/rails3/app/controllers/other_controller.rb
+++ b/test/apps/rails3/app/controllers/other_controller.rb
@@ -43,4 +43,9 @@ class OtherController < ApplicationController
  def test_mail_to
    @user = User.find(current_user)
  end
+
+  def test_command_injection_locals
+    `#{some_command}`
+    system("ls #{some_files}")
+  end
 end
--- a/test/tests/test_rails3.rb
+++ b/test/tests/test_rails3.rb
@@ -15,7 +15,7 @@ class Rails3Tests < Test::Unit::TestCase
      :controller => 1,
      :model => 5,
      :template => 30,
-      :warning => 31
+      :warning => 33
    }
  end

@@ -63,6 +63,24 @@ class Rails3Tests < Test::Unit::TestCase
      :file => /home_controller\.rb/
  end

+  def test_command_injection_non_user_input_backticks
+    assert_warning :type => :warning,
+      :warning_type => "Command Injection",
+      :line => 48,
+      :message => /^Possible\ command\ injection/,
+      :confidence => 1,
+      :file => /other_controller\.rb/
+  end
+
+  def test_command_injection_non_user_input_system
+    assert_warning :type => :warning,
+      :warning_type => "Command Injection",
+      :line => 49,
+      :message => /^Possible\ command\ injection/,
+      :confidence => 1,
+      :file => /other_controller\.rb/
+  end
+
  def test_file_access_concatenation
    assert_warning :type => :warning,
      :warning_type => "File Access",