-
### Pitch
Version number information from lib/mastodon/version.rb is currently displayed to web site visitors, and via the API. I'd rather not advertise the version number of Mastodon that I'm runn…
-
### Finding Description
Your application is using `addJavascriptInterface()`. This may allow an attacker to execute arbitrary code on Android devices. The vulnerability is exploited by injecting Java…
-
I'm using ubutu 20, nodejs 8.17. After installing the dependencies I install the stf globally by 'npm install -g @devicefarmer/stf', then I can run stf successfully and connect one device.
Here is …
-
```
We're running on 64-bit Ubuntu with the following versions installed (as part
of the script):
eventlog_0.2.12.tar.gz
syslog-ng_3.2.2.tar.gz
elsa-0.1.1.tar.gz
We're trying to write a new parser…
-
So I think a security vulnerability would be if a malicious website sent a request to localhost:port, as flask-desktop is connected to python that has a higher amount of user access(such as modifying …
-
Subscribe to this issue and stay notified about new [weekly trending repos in JavaScript](https://github.com/trending/javascript?since=weekly)!
-
Hello,
I'm trying to use OOD to connect to a custom HTTPS server using the reverse proxy feature.
While it works very well for unsecure web servers (HTTP), with the SSL layer I'm getting the follo…
-
### Specifics
In an Atom feed, when an entry’s link to the article’s web page is a site-relative URL (starts with `/`, like ``), NNW misinterprets this as a filesystem path and in its GUI makes the…
-
The docs, and almost every Tornado code example on the internet adds handlers to an `Application` via the `handlers` argument to the constructor. That means the application accepts requests for any ho…
-
### Environment
* **Version**: Version: 2.5.4
* **Installation**: git clone
* **PHP version**:
* **OS**: Debian stable
* **Database**: MariaDB
* **Parameters**: unavailable (hosted by a frie…