Using QL to find a remote code execution vulnerability in Apache Struts (lgtm.com) 1 points by mossity 8y ago ↗ HN
[–] mossity 8y ago ↗ Reading about CVE-2017-9805 it was really interesting to learn that the company that discovered it was using a Datalog-like language in order to query Java code for vulnerability patterns.https://en.wikipedia.org/wiki/Semmle
1 comment
[ 2.7 ms ] story [ 12.1 ms ] threadhttps://en.wikipedia.org/wiki/Semmle