/* goodG2B() - use goodsource and badsink */
private static void GoodG2B(HttpRequest req, HttpResponse resp)
{
string data;
/* FIX: Use a hardcoded user ID */
data = "10";
LinkedList <string> dataLinkedList = new LinkedList <string>();
dataLinkedList.AddLast(data);
dataLinkedList.AddLast(data);
dataLinkedList.AddLast(data);
CWE566_Authorization_Bypass_Through_SQL_Primary__Web_73b.GoodG2BSink(dataLinkedList, req, resp);
}
public override void Bad(HttpRequest req, HttpResponse resp)
{
string data;
/* FLAW: Get the user ID from a URL parameter */
data = req.Params.Get("id");
LinkedList <string> dataLinkedList = new LinkedList <string>();
dataLinkedList.AddLast(data);
dataLinkedList.AddLast(data);
dataLinkedList.AddLast(data);
CWE566_Authorization_Bypass_Through_SQL_Primary__Web_73b.BadSink(dataLinkedList, req, resp);
}
