tooryx
commented
7 months ago Hi @quanyang,
Thank you for your contribution! Unfortunately, this does not qualify for a reward, but I will check internally if we can find something (cannot promise anything though) ;)
~tooryx
The Teamcity auth bypass detector for cve-2023-42793 was missing the necessary gradle wrapper files which meant that the build script wasn't picking on it and the detector is essentially "broken" since it isn't used by the tsunami scanner.
This fixes it by adding the necessary wrapper files.
Would this qualify for a patch reward or a bounty? 😂