975 matches found
GitHub Security Lab: Java: CodeQL query for unsafe RMI deserialization
This bug was reported directly to GitHub Security Lab...
GitHub Security Lab: [GO] CWE-1004: Sensitive cookie without HttpOnly
This bug was reported directly to GitHub Security Lab...
GitHub Security Lab: [Java] BeanShell Injection
This bug was reported directly to GitHub Security Lab...
GitHub Security Lab: ihsinme: CPP Add query for CWE-1126: Declaration of Variable with Unnecessarily Wide Scope
This bug was reported directly to GitHub Security Lab...
GitHub Security Lab: [Java] CWE-295 - Incorrect Hostname Verification - MitM
This bug was reported directly to GitHub Security Lab...
GitHub Security Lab: [Java]: CWE-730 Regex injection
This bug was reported directly to GitHub Security Lab...
GitHub Security Lab: ihsinme:CPP Add query for CWE-415 Double Free
This bug was reported directly to GitHub Security Lab...
GitHub Security Lab: Python: Add support of clickhouse-driver package
This bug was reported directly to GitHub Security Lab...
GitHub Security Lab: [JAVA]: CWE-347 - Improper Verification of Cryptographic Signature : Potential for Auth Bypass
This bug was reported directly to GitHub Security Lab...
GitHub Security Lab: [Python] CWE-090: LDAP Injection
This bug was reported directly to GitHub Security Lab...
GitHub Security Lab: [GO]: CWE-326: Insufficient key size
This bug was reported directly to GitHub Security Lab...
GitHub Security Lab: [Java] CWE-094: Rhino code injection
This bug was reported directly to GitHub Security Lab...
GitHub Security Lab: [Java] CWE-094: Jython code injection
This bug was reported directly to GitHub Security Lab...
GitHub Security Lab: [Java]: CWE-601 Spring url redirection detect
This bug was reported directly to GitHub Security Lab...
GitHub Security Lab: [Java] CWE-078: Add JSch lib OS Command Injection sink
This bug was reported directly to GitHub Security Lab...
GitHub Security Lab: [Python] CWE-400: Regular Expression Injection
This bug was reported directly to GitHub Security Lab...
Exploit for Deserialization of Untrusted Data in Apache Ofbiz
CVE-2020-9496 - RCE Because the 2 xmlrpc related requets in we...
GitHub Security Lab: [JAVA]: CWE-347 - Improper Verification of Cryptographic Signature : Potential for Auth Bypass
This bug was reported directly to GitHub Security Lab...
GitHub Security Lab: [Java] CWE-348: Use of less trusted source
This bug was reported directly to GitHub Security Lab...
Sql injection
Ampache before version 4.2.2 allows unauthenticated users to perform SQL injection. Refer to the referenced GitHub Security Advisory for details and a workaround. This is fixed in version 4.2.2 and the development branch...