fix: jndi-injection.

‘niuerzhuang’ · ‘niuerzhuang’ · commit cee0917035af · 2023-09-07T16:29:13.000+08:00
diff --git a/dongtai-core/src/main/java/io/dongtai/iast/core/handler/hookpoint/models/taint/tag/TaintTag.java b/dongtai-core/src/main/java/io/dongtai/iast/core/handler/hookpoint/models/taint/tag/TaintTag.java
@@ -36,8 +36,8 @@ public enum TaintTag {
     NUMERIC_LIMITED_CHARS("numeric-limited-chars"),
     CUSTOM_ENCODED_CMD_INJECTION("custom-encoded-cmd-injection"),
     CUSTOM_DECODED_CMD_INJECTION("custom-decoded-cmd-injection"),
-    CUSTOM_ENCODED_JND_INJECTION("custom-encoded-jnd-injection"),
-    CUSTOM_DECODED_JND_INJECTION("custom-decoded-jnd-injection"),
+    CUSTOM_ENCODED_JNDI_INJECTION("custom-encoded-jndi-injection"),
+    CUSTOM_DECODED_JNDI_INJECTION("custom-decoded-jndi-injection"),
     CUSTOM_ENCODED_HQL_INJECTION("custom-encoded-hql-injection"),
     CUSTOM_DECODED_HQL_INJECTION("custom-decoded-hql-injection"),
     CUSTOM_ENCODED_NOSQL_INJECTION("custom-encoded-nosql-injection"),
diff --git a/dongtai-core/src/main/java/io/dongtai/iast/core/handler/hookpoint/vulscan/VulnType.java b/dongtai-core/src/main/java/io/dongtai/iast/core/handler/hookpoint/vulscan/VulnType.java
@@ -22,7 +22,7 @@ public enum VulnType {
     XPATH_INJECTION("xpath-injection", "high", true),
     PATH_TRAVERSAL("path-traversal", "high", true),
     XXE("xxe", "medium", true),
-    JND_INJECTION("jnd-injection", "high", true),
+    JNDI_INJECTION("jndi-injection", "high", true),
     NOSQL_INJECTION("nosql-injection", "high", true),
     SMTP_INJECTION("smtp-injection", "high", true),
     EL_INJECTION("el-injection", "high", true),
diff --git a/dongtai-core/src/main/java/io/dongtai/iast/core/handler/hookpoint/vulscan/dynamic/DynamicPropagatorScanner.java b/dongtai-core/src/main/java/io/dongtai/iast/core/handler/hookpoint/vulscan/dynamic/DynamicPropagatorScanner.java
@@ -85,9 +85,9 @@ public class DynamicPropagatorScanner implements IVulScan {
                 new TaintTag[]{TaintTag.UNTRUSTED},
                 new TaintTag[]{TaintTag.CUSTOM_ENCODED_XXE, TaintTag.HTTP_TOKEN_LIMITED_CHARS, TaintTag.NUMERIC_LIMITED_CHARS}
         ));
-        put(VulnType.JND_INJECTION.getName(),Arrays.asList(
+        put(VulnType.JNDI_INJECTION.getName(),Arrays.asList(
                 new TaintTag[]{TaintTag.UNTRUSTED},
-                new TaintTag[]{TaintTag.CUSTOM_ENCODED_JND_INJECTION, TaintTag.HTTP_TOKEN_LIMITED_CHARS, TaintTag.NUMERIC_LIMITED_CHARS}
+                new TaintTag[]{TaintTag.CUSTOM_ENCODED_JNDI_INJECTION, TaintTag.HTTP_TOKEN_LIMITED_CHARS, TaintTag.NUMERIC_LIMITED_CHARS}
         ));
         put(VulnType.NOSQL_INJECTION.getName(),Arrays.asList(
                 new TaintTag[]{TaintTag.UNTRUSTED},
