-
Should there be a requirement about the proper usage of MAC (in contrast to digital signatures). In particular, if there are more than two participants, MAC is usually not safe.
See for example [Di…
-
Create a new MASTG v2 test covering for":
- **Title:** Testing Auto-Generated Screenshots for Sensitive Information
- **ID:** MASTG-TEST-0059
- **Link:** https://mas.owasp.org/MASTG/tests/android/MA…
-
**Describe the bug**
Node Audit Analyzer detects a problem and declares this dependency to be skipped: "dependency skipped: package.json contain an alias for vue-loader-v16 => vue-loader@16.1.2 npm a…
-
This is a most useful project, especially given it can be easily incorporated into any CI workflow. So, please keep up the good work!
Until recently, our experience is its results are broadly in li…
-
Vulnerable Library - aiohttp-3.8.3-cp37-cp37m-manylinux_2_17_x86_64.manylinux2014_x86_64.whl
Async http client/server framework (asyncio)
Library home page: https://files.pythonhosted.org/packages/7…
-
AI applications often require large datasets for training, which may include sensitive personal information. Unauthorized access or misuse of this data can result in privacy breaches.
-
Prepared statements should be used prior escape values. There are a high risk of SQL injection if raw values direct from request parameters/body are provided
- Like clauses value not escaped: `sear…
-
https://www.owasp.org/index.php/OWASP_Glue_Tool_Project
Or at least look at it.
-
s7nio updated
10 years ago
-
Vulnerable Library - ipython-7.34.0-py3-none-any.whl
IPython: Productive Interactive Computing
Library home page: https://files.pythonhosted.org/packages/7c/6a/1f1365f4bf9fcb349fcaa5b61edfcefa721aa1…