google / vulncode-db

Vulncode-DB project
https://www.vulncode-db.com
Apache License 2.0
575 stars 71 forks source link

Changing a commit link during a proposal review does not update the commit hash #77

Closed bluec0re closed 3 years ago

bluec0re commented 3 years ago

Describe the bug When a commit link is updated while a proposal is in review, the commit hash does not change.

To Reproduce Steps to reproduce the behavior:

  1. User: Create a new proposal for an entry w/o commit link
  2. User: Enter a new commit link
  3. User: Request review
  4. Reviewer: Provide feedback
  5. User: Change commit link
  6. Reviewer & Admin: Approve and publish

Expected behavior The detail view of the vulnerability shows the patch for the new commit link.

Observed behavior The detail view of the vulnerability shows the patch of the previous hash.

Screenshots https://www.vulncode-db.com/CVE-2018-7160

Additional context Seems like the commit_hash column is not updated. Might happen in other situations as well