-
Description: I recently switched from using fbonalair/traefik-crowdsec-bouncer to this project as it was more updated, and seemed to more customisable. However, I tried to ban my own IP but that did n…
-
*Critical OSS Vulnerability:*
### pkg:maven/org.springframework/spring-web@5.3.20
1 Critical, 0 Severe, 0 Moderate, 0 Unknown vulnerabilities have been found across 1 dependencies
Compone…
-
Location is the Matrix room *No Wallet Left Behind*, #no-wallet-left-behind:monero.social ([Matrix.to link](https://matrix.to/#/#no-wallet-left-behind:monero.social)), Libera IRC channel #no-wallet-le…
-
Please add support to set user (under which application is runned) dynamically by the variable from the upstream proxy.
-
Vulnerable Library - spring-boot-starter-web-2.1.3.RELEASE.jar
Path to dependency file: /Java/Gradle/kotlin-build-1/build.gradle.kts
Path to vulnerable library: /home/wss-scanner/.gradle/caches/mod…
-
### 描述 (Description)
详情见:“https://github.com/l3s10n/ZenTaoPMS_RCE”
### 期望 (Expectation)
修复漏洞
### 结果 (Result)
后台命令执行
### 软件版本 (Software version)
18.0 - 18.10
-
Instructions on Linux currently require to run `sudo python3 -m pip install -r requirements.txt`. Please consider to drop this if possible.
python pip is a security risk since it does not verify so…
-
### Describe the bug
Versions of the package simple-git before 3.16.0 are vulnerable to Remote Code Execution (RCE) via the clone(), pull(), push() and listRemote() methods, due to improper input san…
-
### What happened?
I have a fairly large CrowdSec installation with the agent running on 3 external LBs (`nginx` hosts), receiving 10M req/hour so around ~1000 req/s each (i.e. not extreme either).
…
-
I just updated the first of my containers with the new version 4.
After some adjustments the only issue left is that my CrowdSec instance no longer detects the ips of the rejected clients. Crowdsec…