Skip to content

/ securitylab

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking β€œSign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

38 Open 25 Closed
38 Open 25 Closed
Author
Filter by author
Label
Filter by label
Use alt + click/return to exclude labels.
Projects
Filter by project
Milestones
Filter by milestone
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated
Most reactions
πŸ‘ πŸ‘Ž πŸ˜„ πŸŽ‰ πŸ˜• ❀️ πŸš€ πŸ‘€
Java : CWE-548 - J2EE server directory listing enabled All For One
#111 opened May 30, 2020 by luchua-bc 1 of 1
2
[CPP] CWE-476 Null Pointer Dereference : Improvement to either missing or redundant NULL check All For One
#110 opened May 28, 2020 by catenacyber 1 of 1
1
[Java] CWE-295 - Incorrect Hostname Verification - MitM All For One
#109 opened May 27, 2020 by intrigus-lgtm 1 of 1
[Java] CWE-295 - Incorrect Hostname Verification - MitM The Bug Slayer
#108 opened May 27, 2020 by intrigus-lgtm 1 of 1
Bug Debug The Bug Slayer
#103 opened May 25, 2020 by maui22 0 of 1
Java: CWE-273 Unsafe certificate trust All For One
#102 opened May 24, 2020 by luchua-bc
Golang : Add Email Content Injection query All For One
#100 opened May 21, 2020 by porcupineyhairs
Golang : Improvements to existing TaintTracking configuration All For One
#99 opened May 21, 2020 by porcupineyhairs
Golang : Add MongoDb NoSQL injection sinks All For One
#98 opened May 21, 2020 by porcupineyhairs
Golang : Improvements to Golang SSRF query All For One
#97 opened May 21, 2020 by porcupineyhairs
Go: Mark WebSocket reads as untrusted All For One
#96 opened May 21, 2020 by porcupineyhairs
Java : add MongoDB injection sinks All For One
#95 opened May 21, 2020 by porcupineyhairs
Java : Add query to detect Server Side Template Injection All For One
#94 opened May 21, 2020 by porcupineyhairs
Python : Add query to detect Server Side Template Injection All For One
#93 opened May 21, 2020 by porcupineyhairs
Python : Add Xpath injection query All For One
#92 opened May 21, 2020 by porcupineyhairs
Python : Add support for detecting XSLT Injection All For One
#91 opened May 21, 2020 by porcupineyhairs
[Java]: CWE-523 Insecure HSTS configuration All For One
#90 opened May 20, 2020 by luchua-bc 0 of 1
CSHARP: Experimental query for tainted WebClient All For One
#89 opened May 20, 2020 by h3ku 1 of 1
Java: CWE-297 Insecure JavaMail SSL configuration All For One
#86 opened May 17, 2020 by luchua-bc 0 of 1
11
Java: Add SSRF query for Java All For One
#84 opened May 13, 2020 by porcupineyhairs
3
gagliardetto: Query to detect incorrect conversion between numeric types All For One
#82 opened May 12, 2020 by gagliardetto 0 of 1
[Java] CWE-918: Query for server side request forgery (SSRF) detection All For One
#80 opened May 12, 2020 by random-debug 1 of 1
CodeQL query for unsafe TLS versions All For One
#79 opened May 10, 2020 by artem-smotrakov 1 of 1
CodeQL query for disabled revocation checking All For One
#78 opened May 9, 2020 by artem-smotrakov 1 of 1
CodeQL query to detect Server-Side Template Injections (JavaScript) All For One
#77 opened May 6, 2020 by monkey-junkie 1 of 1
ProTip! Find all open issues with in progress development work with linked:pr.
You can’t perform that action at this time.