278 matches found
GitHub Security Lab: [Java] CWE-297: Insecure LDAP endpoint configuration
This bug was reported directly to GitHub Security Lab...
GitHub Security Lab: ihsinme: CPP add query for: CPP Add query for CWE-20 Improper Input Validation
This bug was reported directly to GitHub Security Lab...
GitHub Security Lab: [Java] CWE-327: Add more broken crypto algorithms
This bug was reported directly to GitHub Security Lab...
GitHub Security Lab: [Java] CWE-598: Use of GET Request Method with Sensitive Query Strings
This bug was reported directly to GitHub Security Lab...
GitHub Security Lab: [Java] CWE-312: Query to detect cleartext storage of sensitive information using Android SharedPreferences
This bug was reported directly to GitHub Security Lab...
GitHub Security Lab: Java: Fix NashornScriptEngine detection in ScriptEngine query
This bug was reported directly to GitHub Security Lab...
GitHub Security Lab: [codeql-go]: Add query to find use of constant state parameter in Oauth2 flow
This bug was reported directly to GitHub Security Lab...
GitHub Security Lab: Java: Query for detecting JEXL injections
This bug was reported directly to GitHub Security Lab...
GitHub Security Lab: Java : Add query to detect Apache Struts enabled Development mode
This bug was reported directly to GitHub Security Lab...
GitHub Security Lab: Java : Add a query to detect Spring View Manipulation Vulnerability
This bug was reported directly to GitHub Security Lab...
GitHub Security Lab: ihsinme: CPP add query for CWE-788 Access of memory location after the end of a buffer using strncat.
This bug was reported directly to GitHub Security Lab...
GitHub Security Lab: [Java] CWE-489: Query to detect main() method in Java EE applications
This bug was reported directly to GitHub Security Lab...
GitHub Security Lab: [JavaScript]: add query for Express-HBS LFR
This bug was reported directly to GitHub Security Lab...
GitHub Security Lab: [golang] Division by zero query
This bug was reported directly to GitHub Security Lab...
GitHub Security Lab: [Java] CWE-295: Disabled certificate validation in JXBrowser
This bug was reported directly to GitHub Security Lab...
GitHub Security Lab: [Java] CWE-522: Insecure LDAP authentication
This bug was reported directly to GitHub Security Lab...
GHSA-JXWX-85VP-GVWM Regular Expression Denial of Service in jquery-validation
The GitHub Security Lab team has identified potential security vulnerabilities in jquery.validation. The project contains one or more regular expressions that are vulnerable to ReDoS Regular Expression Denial of Service This issue was discovered and reported by GitHub team member @erik-krogh Erik...
GitHub Security Lab: [Java] CWE-555: Query to detect password in Java EE configuration files
This bug was reported directly to GitHub Security Lab...
GitHub Security Lab: Java: QL Query Detector for JHipster Generated CVE-2019-16303
This bug was reported directly to GitHub Security Lab...
GitHub Security Lab: 3,880 Pull Requests Generated to fix JHipster RNG Vulnerability CVE-2019-16303
This bug was reported directly to GitHub Security Lab...