-
I received the pen testing security check audit PDF, where I found some "Medium" severity issues.
1.Binary makes use of insecure APIs: sscanf,malloc
I found this after installing SDWebImage Pod in …
-
**Describe the bug**
When i end my input with shift + right-arrow, pentestgpt gave me error. I use macos Sonoma 14.5 and latest pentestgpt version
pentestgpt --reasoning_model=gpt-4
Your CHATGPT_…
-
This week I'm working on a WAPT, and I wanted to test the target site using tpjs, but found a couple of limitations that I would like to point out and potentially help fix. Please wait until the end t…
-
The API/api.py is importing * from astra which recursively imports API/api.py, and the logic to skip the import on iterative imports:
```
if os.getcwd().split('/')[-1] != 'API':
from API.api im…
-
### Feature or Problem Description
When running Apicurio in my enterprise environment, it needs to pass a pentest. They will check that no SSL/TLS versions are used which are considered insecure, s…
-
Hi,
I'm getting an error while launching the Penetration option (while the interface os is stuck at 3%)
Here is the error from the terminal :
> [2016-11-07 23:25:07,381] ERROR in app: Exception…
-
### Is there an existing issue for this?
- [X] I have searched the existing issues
### Community Note
* Please vote on this issue by adding a :thumbsup: [reaction](https://blog.github.com/2016-…
-
The issues are:
HIGH: Source Code Disclosure - SVN
Medium: Backup File Disclosure
Low: X-Content-Type-Options Header Missing
See attached report for more infomation
-
I know this is really bad practise, but currently I'm pentesting an API which is sending the JWT as a simple get parameter. JWT_Tool does not support this case.
Maybe it can/should be added for such …
-
**Describe the bug**
Every time i reach the token limit it crashes. is there any way round this?
**To Reproduce**
Steps to reproduce the behavior:
1. pentestgpt --reasoning_model=gpt-3.5-turbo -…