-
在写 Apache 2.4.49 路径遍历 (CVE-2021-41773)漏洞的脚本时,使用了/icons/.%%32%65/.%%32%65/.%%32%65/.%%32%65/.%%32%65/.%%32%65/.%%32%65/.%%32%65/.%%32%65/etc/passwd payload,插件会运行失败。
![图片](https://github.com/gobysec/…
52yao updated
4 months ago
-
### What happened?
I have nginx logs sent to journald, which then writes these to /var/log/syslog. In my acquis.yaml I have 2 datasources, each pointing to /var/log/syslog. However, the type of one…
-
There has been an outstanding issue for a long time if a user "accidentally" install the debian packages and then upgrades to our repository version all symlinks point towards deleted files.
An ide…
-
Check if we could develop an Unsupervised model looking at possible PathTraversal attemps at WAF/WebServerLogs.
-
-
**Describe the bug**
When using external db during the merge operation with cve and cisa the operation fails
**Version of dependency-check used**
Maven 8.2.1
**Log file**
Will attach later
**To Re…
-
Because of the amount of regex, this script could consume a lot of resources on Zeek. @JustinAzoff suggested combining all regex in the various files into a single expression, then if there is a hit t…
-
### What happened?
exim does not store "(set_id=target_user)" information in our log entry in some cases.
It's happens when server_set_id is not specified for some reasons, or when exim can't parse …
-
### What happened?
Crowdsec + appsec + Modsecurity rule:SecRule REMOTE_ADDR "@ipMatch 127.0.0.1,192.168.200.1" "id:900101,phase:1,pass,nolog,allow"
The value of REMOTE_ADDR is 127.0.0.1:48926, and 4…
-
### What happened?
When I start to run crowdsec I have these error
```
time="2024-02-02T16:22:43+01:00" level=error msg="error in stop : no space left on device" type=file
```
### What did y…