Skip to main content
assistive.skiplink.to.breadcrumbs
assistive.skiplink.to.header.menu
assistive.skiplink.to.action.menu
assistive.skiplink.to.quick.search

Page History

Versions Compared

Key

This line was added.
This line was removed.
Formatting was changed.

Comment: Added taint to automated detection

...

Perl's warnings can detect if a call to printf() or sprintf() contains the wrong number of format string arguments.

Tool	Diagnostic
Warnings	Missing argument in .*printf
Taint mode	Insecure dependency in .*printf

Related Guidelines

CERT C Secure Coding Standard: FIO30-C. Exclude user input from format strings

...