Query

github/codeql#5443

Report

Constructing LDAP names or search filters directly from tainted data enables attackers to inject specially crafted values that changes the initial meaning of the name or filter itself. Successful LDAP injections attacks can read, modify or delete sensitive information from the directory service.

This query identifies cases in which a LDAP query executes user-provided input without being sanitized before.

• Are you planning to discuss this vulnerability submission publicly? (Blog Post, social networks, etc). We would love to have you spread the word about the good work you are doing

Result(s)

• PRs providing fix:
• • Escape search filter's user input in LDAP query cernanalysispreservation/analysispreservation.cern.ch#2180
• • Fix LDAP Injection INGInious/INGInious#662
• • Polish LDAP Injection fix LibrIT/passhport#562
• • Fix LDAP Injection getredash/redash#5441
• • Fix LDAP Injection abcdabcd987/lxc-gpu#4