-
### Describe the bug
SARIF format is not on-par with the JSON format.
### Current behavior
SARIF format is missing most of the JSON format information:
- No license (FOSS) information at a…
-
Vulnerable Library - golang.org/x/crypto-v0.0.0-20220817201139-bc19a97f63c8
Library home page: https://proxy.golang.org/golang.org/x/crypto/@v/v0.0.0-20220817201139-bc19a97f63c8.zip
Path to depende…
-
## CVE-2023-48795 - Medium Severity Vulnerability
Vulnerable Library - sshd-core-1.6.0.jar
The Apache Software Foundation provides support for the Apache community of open-source software projects.
…
-
## CVE-2023-48795 - Medium Severity Vulnerability
Vulnerable Library - ssh2-0.8.9.tgz
SSH2 client and server modules written in pure JavaScript for node.js
Library home page: https://registry.npmjs.…
-
Add a PoC exploit for [CVE-2024-4040], unauthenticated server side template injection (SSTI) vulnerability in CrushFTP in all versions before 10.7.1 and 11.1.0.
[CVE-2024-4040]: https://nvd.nis…
-
Vulnerable Library - github.com/golang/crypto-v0.1.0
[mirror] Go supplementary cryptography libraries
Library home page: https://proxy.golang.org/github.com/golang/crypto/@v/v0.1.0.zip
Path to depen…
-
Pls.provide the proper command syntax. Appreciate it
-
Vulnerable Library - sshj-0.31.0.jar
SSHv2 library for Java
Path to dependency file: /nifi-nar-bundles/nifi-standard-bundle/nifi-standard-processors/pom.xml
Path to vulnerable library: /nifi-nar-bun…
-
## Summary
This vulnerability was disclosed in November 2023 by Converge Software and affects a file transfer product with what seems like a reasonably large internet-facing attack surface area (10K+…
-
- [ ] #51
```
LAYER: meta-java
PACKAGE NAME: classpath-initial-native
PACKAGE VERSION: 0.93
CVE: CVE-2008-5659
CVE STATUS: Unpatched
CVE SUMMARY: The gnu.java.security.util.PRNG class in GNU Cl…