-
Hello Kraken, I have found another interesting bug in the API key's list.
Bug: Homograph attack.
Description: Please refer https://en.wikipedia.org/wiki/Internationalized_domain_name to know mo…
-
Vulnerable Library - libeventrelease-2.0.18-stable
Event notification library
Library home page: https://github.com/libevent/libevent.git
Found in HEAD commit: 0c45ce909374d16605095db4fce9a89b9b6ba…
-
Hi,
I was a looking at the code, and I saw slack webhook url is not being stored as secret [here](https://github.com/domain-protect/domain-protect/blob/main/lambda_code/notify/notify.py#L294) and […
-
Vulnerable Library - leventrelease-2.0.21-stable
Library home page: git://git.code.sf.net/p/levent/code
Found in HEAD commit: 0c45ce909374d16605095db4fce9a89b9b6bafd5
Vulnerable Source Files (1…
-
bootbox.confirm and alert use jquery's .html() (and other functions) that add content to html elements. These are a potential XSS security issue since jquery evaluates the content.
Here's a work…
-
@oreoshake:
The API doesn't like invalid state changes or even state changes to the current state. This can lead to confusing `400` errors.
For the case where you're doing a state change to th…
-
### Steps to reproduce
1. Import the attached ICS file to Nextcloud via the Calendar app - [Zebras Unite Fireside Chat — on Clubhouse.zip](https://github.com/nextcloud/server/files/5984637/Zebras…
-
### How to use GitHub
* Please use the 👍 [reaction](https://blog.github.com/2016-03-10-add-reactions-to-pull-requests-issues-and-comments/) to show that you are affected by the same issue.
…
gno65 updated
3 years ago
-
Vulnerable Library - language-3.8.0.tgz
Path to dependency file: /natural-language/JavaScript/sms-sentiment/package.json
Path to vulnerable library: /cloud-translation/JavaScript/sms-translation/no…
-
**EDIT:** Before you post your suggestions, could you please certify that the service in which you're posting for suggestion is **currently** able to post or display permanently public information on …