-
**Feature: Group similar vulnerabilities into main Vulnerability categories**
There are many vulnerability type categories, for a pretty cool sample take a look at the following:
``` https://githu…
-
https://doudoudedi.github.io/2022/02/21/CVE-2021-43711/#more
Command injection of ToTolink seriesPreface Last year, I found some command injection problems on totolink ex200 products, but I fou…
-
We've done a pretty significant $wpdb query security audit over the last year, but it wasn't a comprehensive security audit. For 3.9, I'd like to review the entire codebase to ensure we're in alignme…
-
Currently, I am facing a problem that the mounted `buildkite-agent` can not run within docker, as stated https://github.com/bugcrowd/test-summary-buildkite-plugin/issues/23#issuecomment-525544140.
…
-
The latest `buildkite-agent` docker container uses docker 17.12 (the one on the ubuntu 18.04 repos) which does not have the `--mount` flag. NG, because this plugin uses the `--mount` flag. I guess I c…
-
Currently it appears that all errors/warnings/etc show up in the red annotate block at the top of BK builds.
![image](https://user-images.githubusercontent.com/753891/58532865-34f1a600-822a-11e9-99…
-
Hey there!
I'd like to report a security issue but cannot find contact instructions on your repository.
If not a hassle, might you kindly add a `SECURITY.md` file with an email, or another contact m…
-
- http://bugcrowd.com/list-of-bug-bounty-programs/
- http://computersecuritywithethicalhacking.blogspot.com/2012/09/web-product-vulnerabilty-bug-bounty.html
- http://www.ehackingnews.com/2012/12/list-…
-
CSRF token should be invalidated after it's been used. This is externally reported and the tester is already aggravated because they slipped through the cracks in bugcrowd's queue, so sticking with th…
-
Hello,
We have received a disclosure against this repository and I would like to share it with you. I could not find a contactable e-mail or security process to follow.
Could you create a `SECUR…