Wrong category for API Management SSRF and path traversal vulnerabilities

wiz-sec / open-cvdb

An open project to list all publicly known cloud vulnerabilities and CSP security issues

https://cloudvulndb.org

Creative Commons Attribution 4.0 International

297 stars 59 forks source link

Wrong category for API Management SSRF and path traversal vulnerabilities #287

Closed guikcd closed 2 months ago

guikcd commented 3 months ago

The page https://www.cloudvulndb.org/api-mgmt-ssrf-path-traversal seems tagged AWS, while it apply to Azure, it appear in this search results: https://www.cloudvulndb.org/results?tags=AWS,High

korniko98 commented 3 months ago

Unfortunately our current search engine isn't particularly good - this seems to simply be matching the word "flaws" in the content which contains the substring "aws" - as a quick fix we can replace that word with a synonym, and work on improving the search engine: https://github.com/wiz-sec/open-cvdb/issues/288