-
```
Currently, the ability to run applications from ZAP is quite limited, in that all of
the parameters to the application must be statically defined, when setting up the application
under "Tools -> O…
-
đź‘‹
Not particularly phoenix related, but is it possible to catch if foreign keys can be set from `params` passed in by a user through a controller action? Abusing different ecto `cast`s down the lin…
-
## CVE-2022-36077 - High Severity Vulnerability
Vulnerable Library - electron-13.1.9.tgz
Build cross platform desktop apps with JavaScript, HTML, and CSS
Library home page: https://registry.npmjs.or…
-
## CVE-2022-29247 - Low Severity Vulnerability
Vulnerable Library - electron-13.1.9.tgz
Build cross platform desktop apps with JavaScript, HTML, and CSS
Library home page: https://registry.npmjs.org…
-
Vulnerable Library - spring-boot-starter-web-2.2.0.RELEASE.jar
Path to dependency file: /java/ssti/pom.xml
Path to vulnerable library: /java/ssti/pom.xml,/java/des-yaml/pom.xml
Found in HEAD com…
-
## CVE-2023-33201 - Medium Severity Vulnerability
Vulnerable Library - bcprov-jdk15on-1.64.jar
The Bouncy Castle Crypto package is a Java implementation of cryptographic algorithms. This jar contain…
-
The URL to view finding details such as:
http://localhost:8080/threadfix/organizations/1/applications/1/vulnerabilities/61?nonce=56CEBDB49640144F530AA9A1B13A9944
doesn't work without the nonce parame…
-
Clipit uses version 0.9.8 of jquery.imgareaselect - which contains jQuery 1.6.1
We are advised that jQuery
-
## CVE-2024-29133 - Medium Severity Vulnerability
Vulnerable Library - commons-configuration2-2.1.1.jar
Tools to assist in the reading of configuration/preferences files in
various formats
L…
-
## CVE-2024-29131 - High Severity Vulnerability
Vulnerable Library - commons-configuration2-2.1.1.jar
Tools to assist in the reading of configuration/preferences files in
various formats
Lib…