-
I had a python application which was redirecting users to other external websites once the authentication was completed. Even after having many checks for the URL , it was unable to stop the redirecti…
-
@tomato42 and I have tested OpenSSL and we found that it may be vulnerable to a variant of the [Minerva attack](https://minerva.crocs.fi.muni.cz/). We used statistical analysis to confirm the presence…
-
Vulnerable Library - express-4.16.4.tgz
Fast, unopinionated, minimalist web framework
Library home page: https://registry.npmjs.org/express/-/express-4.16.4.tgz
Path to dependency file: /NodeGoat/pa…
-
I know you have a lot of projects on your plate, but this is just a quick easy feature you can add.
make the attributes have hidden feature.
an option to hide the attributes individually either …
-
Vulnerable Library - microsoft.entityframeworkcore.sqlserver.3.0.0.nupkg
Path to dependency file: /dotnet-skeleton-app.csproj
Path to vulnerable library: /home/wss-scanner/.nuget/packages/microsoft…
-
## CVE-2018-15758 - High Severity Vulnerability
Vulnerable Library - spring-security-oauth2-2.2.1.RELEASE.jar
Module for providing OAuth2 support to Spring Security
Library home page: http://static.…
-
While discussing an [issue relating to OPDS Authentication](https://github.com/edrlab/thorium-reader/issues/2512) it was mentioned that OPDS Clients should be storing authorization tokens against the …
-
### What client do you play on?
enUS
### Faction
- [X] Alliance
- [ ] Horde
### Content Phase:
- [ ] Generic
- [X] 1-19
- [X] 20-29
- [ ] 30-39
- [ ] 40-49
- [ ] 50-59
### Curr…
-
Could the defaults for all install scripts be set to run the openfga server with limited permissions?
In the case of helm chart, this would achieve:
- Not running server as root
- Not allowing …
-
Vulnerable Library - core-1.28.2.tgz
Path to dependency file: /package.json
Path to vulnerable library: /package.json
## Vulnerabilities
| CVE | Severity | CVSS | Dependency | Type | Fixed in…