Skip to content

/ securitylab

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

28 Open 128 Closed
28 Open 128 Closed
Author
Filter by author
Label
Filter by label
Use alt + click/return to exclude labels.
Projects
Filter by project
Milestones
Filter by milestone
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀
ihsinme: CPP Add query for CWE-691 Insufficient Control Flow Management When Using Bit Operations All For One
#343 opened Apr 14, 2021 by ihsinme 1 of 1
[Python] CWE-943: Add NoSQL Injection Query All For One
#342 opened Apr 14, 2021 by mrthankyou 1 of 1
1
ihsinme: CPP Add query for CWE-783 Operator Precedence Logic Error When Use Bool Type All For One
#340 opened Apr 12, 2021 by ihsinme 1 of 1
[C#]: HttpOnly and Secure Cookies for .NET Core and .NET All For One
#338 opened Apr 9, 2021 by edvraa 0 of 1
[C#]: Deserialization sinks All For One
#337 opened Apr 9, 2021 by edvraa 0 of 1
[Java] CWE-348: Use of less trusted source All For One
#336 opened Apr 8, 2021 by haby0 1 of 1
[codeql-go]: Mass Add Web Framework Models With the Help of Code Generation All For One
#335 opened Apr 7, 2021 by gagliardetto 0 of 1
[JAVA]: CWE-347 - Improper Verification of Cryptographic Signature : Potential for Auth Bypass All For One
#333 opened Apr 6, 2021 by intrigus-lgtm 1 of 1
1
[Python]: JWT security-related queries All For One
#331 opened Apr 4, 2021 by jorgectf
[Java] CWE-488: Exposure of Data Element to Wrong Session All For One
#329 opened Apr 1, 2021 by haby0 1 of 1
C# : Add query to detect Server Side Request Forgery All For One
#325 opened Mar 22, 2021 by porcupineyhairs
[Java] Query for detecting Jakarta Expression Language injections All For One
#324 opened Mar 21, 2021 by artem-smotrakov 1 of 1
7
[Java] CWE-094: Query to detect Groovy Code Injections All For One
#323 opened Mar 21, 2021 by p0wn4j 0 of 1
@owen-mc
4
[Python] CWE-522: Insecure LDAP Authentication All For One
#321 opened Mar 18, 2021 by jorgectf 1 of 1
1
[Python] CWE-287: LDAP Improper Authentication All For One
#320 opened Mar 18, 2021 by jorgectf 1 of 1
[Python] CWE-090: LDAP Injection All For One
#319 opened Mar 18, 2021 by jorgectf 1 of 1
[Python] CWE-400: Regular Expression Injection All For One
#318 opened Mar 18, 2021 by jorgectf 1 of 1
@agustingianni
4
[Java] CWE-470: Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection') All For One
#317 opened Mar 18, 2021 by haby0 1 of 1
4
[Java] CWE-918: Added URLClassLoader and WebClient SSRF sinks All For One
#312 opened Mar 14, 2021 by p0wn4j 1 of 1
2
[Java/Maven]: Detect use of deprecated JCenter/Bintray Repository All For One
#287 opened Feb 25, 2021 by JLLeitschuh 1 of 1
6
Java: JSONP Injection All For One
#277 opened Feb 18, 2021 by haby0 1 of 1
10
[C#] CWE-759: Query to detect password hash without a salt All For One
#233 opened Jan 13, 2021 by luchua-bc 1 of 1
8
[Java]: CWE 295 - Insecure TrustManager - MiTM All For One
#222 opened Dec 24, 2020 by intrigus-lgtm 1 of 1
12
Server Side Template Injection lead to RCE ASP.NET RazorEngine All For One
#182 opened Sep 22, 2020 by cldrn 0 of 1
1
[Java] CWE-117: CodeQL query to detect Log Injection
#144 opened Jul 2, 2020 by dellalibera 1 of 1
6
ProTip! no:milestone will show everything without a milestone.