-
**Reported by Bluefin Tuna on 3 Apr 42799116 09:47 UTC**
On Linux (Fedora 17 KDE spin), boinc_client (7.0.28 x86_64-pc-linux-gnu) is running as user "boinc", a user not used for anything else.
Settin…
-
#### What is this feature about (expected vs actual behaviour)?
Link url https://www.geolocation.com is not passing, also https://www.history.com
#### How can I reproduce it?
insert a link with o…
-
## Describe the bug
I ran dalfox on the following vulnerable application:
```
const express = require('express')
const app = express()
const port = 3000
app.get('/', (req, res) => {
res.se…
-
## User story
As a user I want w3af to find as many SQL injection vulnerabilities as possible.
## Conditions of satisfaction
- [x] Unittests for all SQL sections of WAVSEP need to be written
- [x] …
-
При использовании библиотеки GnuTLS вместо OpenSSL и версии TLS 1.3 происходит разрыв соедиения с файлообмеником files.catbox.moe.
Zapret запущен непосредственно на компьютере. Конфиг zapret следую…
-
## Description
I am doing some experiments on Coraza and found something different from ModSec. When I tried to read from the debug/debug logs, ModSec will interpret variable (e.g., ), whereas Cora…
-
The "exhibit" result format was abandoned in 2012 and is no longer working. I guess it should be removed from the code base.
-
### Steps To Reproduce
Open a vault.bitwarden.com website and look through the Developer console in any browser
### Expected Result
**1.** All the cookies have attributes:
`HttpOnly: True` `…
-
## To Do (de base)
- Détecter les ports par default utilisé par Metasploit et les bloquers (4444 et 4445)
- Serveur SMTP qui alert par mail l'utilisateur sur une requête malveillante
- Détecter e…
-
- [x] Fuzzing wordlist https://github.com/reewardius/bbFuzzing.txt
- Added to onelistforallshort
- [ ] Arjun on deep mode?
- [ ] Recheck ffuf post processing cuz -ach apparently works wrong
- [ …