Merge pull request #72 from python-security/two_more_problems

Added 2 more problem files

Author: KevinHock

Diff for: example/django.nV/taskManager/loop_false_negative.py

@@ -0,0 +1,23 @@
+import os
+
+from tempfile import NamedTemporaryFile
+
+from django.shortcuts import redirect
+from django.http import HttpResponse
+
+def download(request):
+    response = HttpResponse("Hi.")
+    fork_list = request.POST.getlist('fork_list')
+    if request.POST and len(fork_list) > 0:
+        tmp_file = NamedTemporaryFile()
+        cmd = "tar -czvf %s -C %s " % (tmp_file.name,DOWNLOADS)
+        for item in fork_list:
+            cmd += item + " "
+        os.system(cmd)
+
+        response = HttpResponse(content_type='application/x-gzip')
+        response['Content-Disposition'] = 'attachment; filename="%s.tar.gz"' % tmp_file.name
+        response.write(tmp_file.file.read())
+    else:
+        response = redirect("/list/")
+    return response

Diff for: example/django.nV/taskManager/redirect_maybe_should_trigger_vuln.py

@@ -0,0 +1,25 @@
+from django.shortcuts import render, render_to_response, redirect
+
+
+def task_edit(request, project_id, task_id):
+
+    proj = Project.objects.get(pk=project_id)
+    task = Task.objects.get(pk=task_id)
+
+    if request.method == 'POST':
+
+        if task.project == proj:
+
+            text = request.POST.get('text', False)
+            task_title = request.POST.get('task_title', False)
+            task_completed = request.POST.get('task_completed', False)
+
+            task.title = task_title
+            task.text = text
+            task.completed = True if task_completed == "1" else False
+            task.save()
+
+        return redirect('/taskManager/' + project_id + '/' + task_id)
+    else:
+        return render_to_response(
+            'taskManager/task_edit.html', {'task': task}, RequestContext(request))