-
### Environment
* **Version**: Version: 2.5.4
* **Installation**: git clone
* **PHP version**:
* **OS**: Debian stable
* **Database**: MariaDB
* **Parameters**: unavailable (hosted by a frie…
-
- Site: [http://testphp.vulnweb.com](http://testphp.vulnweb.com)
**New Alerts**
- **Absence of Anti-CSRF Tokens** [10202] total: 11:
- [http://testphp.vulnweb.com/](http://testphp.vulnweb.co…
-
The docs, and almost every Tornado code example on the internet adds handlers to an `Application` via the `handlers` argument to the constructor. That means the application accepts requests for any ho…
-
Hello,
I'm trying to use OOD to connect to a custom HTTPS server using the reverse proxy feature.
While it works very well for unsecure web servers (HTTP), with the SSL layer I'm getting the follo…
-
- Site: [https://hml-tcc-password-manager.vercel.app](https://hml-tcc-password-manager.vercel.app)
**New Alerts**
- **Cloud Metadata Potentially Exposed** [90034] total: 1:
- [https://hml-tc…
-
Hi there,
I was looking at the Dockerfile and noticed that the app root is at `/root`, I'm not exactly sure why one would think of putting it there, but that seems like not the greatest design deci…
-
[Local Storage is insecure](https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/HTML5_Security_Cheat_Sheet.md#local-storage) and shouldn't be used for storing sensitive information.
Sto…
-
### Finding Description
Your application is using `addJavascriptInterface()`. This may allow an attacker to execute arbitrary code on Android devices. The vulnerability is exploited by injecting Java…
-
## CVE-2021-22573 - High Severity Vulnerability
Vulnerable Library - google-oauth-client-1.21.0.jar
Google OAuth Client Library for Java. Functionality that works on all supported Java platforms,
…
-
### Vite Plugin Version
1.1
### Laravel Version
11 via `laravel new`
### Node Version
18.18.2
### NPM Version
10.4
### Operating System
macOS
### OS Version
15.1.1
…