-
### NuGet Product(s) Involved
Visual Studio Package Management UI, Visual Studio Package Manager Console
### The Elevator Pitch
PackageReference allows packages to have per-RID dependencies. Howeve…
-
1. Vulnerability affects product:onekeyadmin
2. Vulnerability affects version 1.3.9
3. Vulnerability type:storage xss vulnerability(Cross-site scripting)
4. Vulnerability Details:
url
http://192…
-
### Vulnerability Description:
The ` _chargeProtocolAndManagementFees` function in smart contract systemically calculates and mints fees for asset management and protocol fees. However, a critical v…
-
**Is your feature request related to a problem? Please describe**
I've been utilizing both DefectDojo and Rengine for vulnerability management and reconnaissance, respectively. While DefectDojo off…
-
Invicti Enterprise detected a missing X-Content-Type-Options header which means that this website could be at risk of a MIME-
sniffing attacks.
-
Oppfølgingsoppgaver etter risikovurdering.
Team kunde skal gjennomgå følgende tiltak knyttet til risiko:
```[tasklist]
### Tasks
- [x] R27 R28 Tydelig plassering av ansvar for sikkerhetsru…
-
Currently only two OQS sub projects have publicly documented SECURITY.md handling procedures defined. The set of people receiving "privately" reported security vulnerabilities in those is pretty large…
-
Project link: https://github.com/infobyte/faraday
https://www.linkedin.com/feed/update/urn%3Ali%3Aactivity%3A6817142334447214592/
https://nuclei.projectdiscovery.io/
-
*Description*:
Projects like Envoy proxy have a robust processe for vulnerability management, outlined [here](https://github.com/envoyproxy/envoy/blob/main/SECURITY.md).
Envoy Gateway should esta…
guydc updated
1 month ago
-
### Current Behavior
If a user or a team is granted `ACCESS_MANAGEMENT` permission, they are able to view all projects, even if their `VIEW_PORTFOLIO` permission is scoped (via team+portfolio access …