search

pippo-java / pippo

Micro Java Web Framework
http://www.pippo.ro
Apache License 2.0
786 stars 128 forks source link

Please Open a GitHub Security Advisory #618

Open JLLeitschuh opened 1 year ago

JLLeitschuh commented 1 year ago

Hello, I'm an independent security researcher performing security research under the GitHub Security Lab Bug Bounty Program. I believe I may have found a security vulnerability in this project.

Please open a security advisory against this repository so we can privately discuss the details. This advisory can be opened by a user with admin permissions on this repository.

https://github.com/pippo-java/pippo/security/advisories

@decebals, you should be able to view the disclosure here: https://github.com/JLLeitschuh/security-research/security/advisories/GHSA-v956-x5m6-xj62

Vulnerability disclosure will occur on Mar 14, 2023.

JLLeitschuh commented 1 year ago

@decebals friendly ping

mhagnumdw commented 1 year ago

@JLLeitschuh , is the link below public? I get 404

@decebals, you should be able to view the disclosure here: https://github.com/JLLeitschuh/security-research/security/advisories/GHSA-v956-x5m6-xj62

JLLeitschuh commented 1 year ago

@mhagnumdw you should be able to see it now