Updated C# LDAP Injection rule (!209) · Merge requests · GitLab.org / security-products / sast-rules

The source project of this merge request has been removed.

Jayanaka Fonseka requested to merge (removed):main into main Sep 05, 2023

csharp/injection/rule-LdapInjection.yml - could be enhanced to check for assignment when using UserPrincipal u = new UserPrincipal(AD); and the AccountManagement assembly

Modified the existing rule to scan for "AccountManagement" API when using UserPrincipal method.

Relates to Draft: Enhance C# semgrep rules (gitlab-org/gitlab#408758 - closed)

Updated C# LDAP Injection rule

Merge request reports