[Python] CWE-090: LDAP Injection 

## Query

https://github.com/github/codeql/pull/5443

## Report

Constructing LDAP names or search filters directly from tainted data enables attackers to inject specially crafted values that changes the initial meaning of the name or filter itself. Successful LDAP injections attacks can read, modify or delete sensitive information from the directory service.

This query identifies cases in which a LDAP query executes user-provided input without being sanitized before.

- [x] Are you planning to discuss this vulnerability submission publicly? (Blog Post, social networks, etc). *We would love to have you spread the word about the good work you are doing*

## Result(s)

- PRs providing fix:
- - https://github.com/cernanalysispreservation/analysispreservation.cern.ch/pull/2180
- - https://github.com/UCL-INGI/INGInious/pull/662
- - https://github.com/LibrIT/passhport/pull/562
- - https://github.com/getredash/redash/pull/5441
- - https://github.com/abcdabcd987/lxc-gpu/pull/4


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

[Python] CWE-090: LDAP Injection #319

Query

Report

Result(s)

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

[Python] CWE-090: LDAP Injection #319

Description

Query

Report

Result(s)

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions