-
Type: Bug
When creating a virtual environment with python3 -m venv env and then opening the terminal
```shell
((env) ) randark@developer:~/code/20240407-ssti$
```
Anomalous double-bracket-wrapped…
-
Add a PoC exploit for [CVE-2024-4040], unauthenticated server side template injection (SSTI) vulnerability in CrushFTP in all versions before 10.7.1 and 11.1.0.
[CVE-2024-4040]: https://nvd.nis…
-
With usage of pre-commit tool v4.3.0 and poetry version 1.8.2 (poetry run invoke security) following issue appeared:
`Vulnerability ID:
70612
Affected spec: >=0
ADVISORY:
In Jinja2, the …
-
**Describe the bug**
I was recently writing a report and got this error
```python
ERROR 2024-05-16 10:13:08,196 views 25 140021970004792 DOCX generation failed unexpectedly for Report 28 and user d…
-
Using open-source vulnerability database
Found and scanned 103 packages
Timestamp 2024-06-07 21:36:11
1 vulnerability reported
0 vulnerabilities ignored
+===============================…
-
Vulnerable Library - thymeleaf-3.0.15.RELEASE.jar
Modern server-side Java template engine for both web and standalone environments
Library home page: http://www.thymeleaf.org
Path to dependency file…
-
### Is this a new bug in dbt-core?
- [] I believe this is a new bug in dbt-core
- [X] I have searched the existing issues, and I could not find an existing issue for this bug
### Current Behavi…
-
black_list = [".","[","]","attr"]
-
Description:
I am reaching out to the vendor through this issue to kindly request that you check your email regarding an important matter related to a security advisory for Camaleon CMS. I have sent …
-
## Vulnerability Name : Server Side Template Injection to Cross Site Scripting
## Vulnerable Domain : *.V6.demo.nocobase.com
## Description :
In the ACL where the user edits the Role the `role na…