psalm/docs/running_psalm/issues/TaintedXpath.md

# TaintedXpath

Emitted when user-controlled input can be passed into a xpath query.

```php
<?php

function queryExpression(SimpleXMLElement $xml) : array|false|null {
    $expression = $_GET["expression"];
    return $xml->xpath($expression);
}
```
Fix tests 2023-08-31 05:20:39 +02:00			`# TaintedXpath`
Xpath injection #10162 2023-08-30 17:22:14 +02:00
Doc typo 2023-11-22 11:10:23 +01:00			`Emitted when user-controlled input can be passed into a xpath query.`
Xpath injection #10162 2023-08-30 17:22:14 +02:00
			```php
			`<?php`

			`function queryExpression(SimpleXMLElement $xml) : array\|false\|null {`
			`$expression = $_GET["expression"];`
			`return $xml->xpath($expression);`
			`}`
			```