-
## CVE-2017-7957 - High Severity Vulnerability
Vulnerable Library - xstream-1.4.5.jar
XStream is a serialization library from Java objects to XML and back.
Path to dependency file: /pom.xml
Path to …
-
**Third_Party_Keyboards_On_Sensitive_Field** issue exists @ **iGoat-Swift/iGoat-Swift/Source/Exercises/Key Management/Random Key Generation/RandomKeyGenerationExerciseVC.swift** in branch **master**
…
-
Veracode Software Composition Analysis
===============================
Attribute | Details
| --- | --- |
Library | Spring Beans
Description | Spring Beans
Language | JAVA
Vulnerability…
-
I have identified security vulnerabilities in version 3.1.1.
These vulnerabilities include Cross-Site Scripting (XSS) - both Stored and Reflected, SQL Injection, CSRF, and Server-Side Template Injec…
-
## CVE-2024-29025 - Medium Severity Vulnerability
Vulnerable Library - netty-codec-http-4.1.17.Final.jar
Netty is an asynchronous event-driven network application framework for
rapid development…
-
## Issue
Currently, our login page credentials (such as email and password) are being stored in the local storage of the user's browser. This approach has several significant disadvantages and poses …
-
Hi,
I'm using a dependency check 8.2.0 version via Jenkins file and following below set-up as one of the stage - but every time I see, report generates with zero vulnerabilities.
after the scm…
-
Several App servers were found to be vulnerable to java deserialization vulnerabilities The article below details exploitation for several app servers:
http://foxglovesecurity.com/2015/11/06/what-do-…
-
## CVE-2023-27539 - High Severity Vulnerability
Vulnerable Library - rack-2.2.3.gem
Rack provides a minimal, modular and adaptable interface for developing
web applications in Ruby. By wrapping HTTP…
-
## CVE-2024-34064 - Medium Severity Vulnerability
Vulnerable Libraries - Jinja2-3.0.1-py3-none-any.whl, Jinja2-2.11.3-py2.py3-none-any.whl
Jinja2-3.0.1-py3-none-any.whl
A very fast and expressive …