-
# CVE
This query has not been tested against all lgtm projects. So, there is no CVE found using this PR.
# Description
This is a continuation of the now closed issue #94.
This query det…
-
Hi,
Is it possible to make scant3r installable from pypi `pip install -U scant3r` or `pipx install scant3r` without doing `git clone scant3r` ?
The goal is to make the tool easy to install and run w…
ghost updated
2 years ago
-
# 审计过程
jpress后台提供了**评论邮件通知管理员**功能,而且发送的邮件模板可控,官方给出了例子,告诉我们可以用`#(comment.id)`,那么猜测这里可能会存在模板渲染问题
…
-
Hi,
first of all thank you for this great plugin! I`am using this in my solution [Perlite](https://github.com/secure-77/Perlite) to build the graph.
Unfortunately I have a strange problem with s…
-
**Describe the bug**
After installing all the tools and dependencies via install.sh, when i am trying to run reconftw.sh file, its showing only usage description only no matter what switches/options …
-
## CVE-2019-8341 - High Severity Vulnerability
Vulnerable Library - Jinja2-2.10-py2.py3-none-any.whl
A small but fast and easy to use stand-alone template engine written in pure python.
Library home…
-
Lines 11 & 12 in `install.sh` read as:
```bash
mv payloads/lfi.txt ~/tools/payloads/
mv payloads/ssti.txt ~/tools/payloads/
```
However lines 199 & 200 in `garud` read:
```bash
cat ~/tools/pa…
-
What prometheus version are you using?
2.3.1
What OS are you running prometheus on?
Redhat 7.5
The following security issue is reported during qualys scan:
(1)
Server-Side Template Injection…
-
> Hello! Why the grep PoC has become [POC][G][GET][GREP] instead of the specific type of finding he get? I thought that was because of the silent mode, but it looks like it prints this kind of resul…
-
It would be really helpful if we could have "Severity" added to the JSON output.
Based on the issue severity, Severity field can have value as below.
1. Info
2. Low
3. Medium
4. Major
5. Crit…