lang:

Java

regex:

getParameterNames\s?\(|getParameter\s?\(|getParameterValues\s?\(|getParamaterMap\s?\(

description:

These functions extract data directly from the HTTP request. Manually check the code to ensure the data obtained is correctly validated and/or sanitized.
tags:
web http request input validation
results