Skip to content

/ securitylab

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

32 Open 138 Closed
32 Open 138 Closed
Author
Filter by author
Label
Filter by label
Use alt + click/return to exclude labels.
Projects
Filter by project
Milestones
Filter by milestone
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀
[Java] CWE-798: Query to detect hard-coded Azure credentials All For One
#362 opened May 7, 2021 by luchua-bc 1 of 1
C++: Support Pqxx connector to search for sql injections to Postgres All For One
#361 opened May 5, 2021 by japroc 1 of 1
1
[Java]: CWE-665 Insecure environment during RMI/JMX Server initialisation - All for one bounty All For One
#360 opened May 4, 2021 by timoles 1 of 1
[Java] CWE-094: Jython code injection All For One
#359 opened May 3, 2021 by luchua-bc 1 of 1
Java: CodeQL query for unsafe RMI deserialization All For One
#358 opened May 1, 2021 by artem-smotrakov 1 of 1
[Java] CWE-094: Rhino code injection All For One
#356 opened Apr 29, 2021 by luchua-bc 1 of 1
5
[JavaScript]: CWE-1004: Sensitive cookie without HttpOnly All For One
#354 opened Apr 27, 2021 by edvraa 0 of 1
Golang: Add query to detect CSRF vulnerabilities All For One
#353 opened Apr 26, 2021 by porcupineyhairs
2
Java: Denial of Service due to decoding of untrusted input All For One
#352 opened Apr 26, 2021 by porcupineyhairs
[Java]: CWE-730 Regex injection All For One
#351 opened Apr 26, 2021 by edvraa 0 of 1
2
[Java] CWE-078: Add JSch lib OS Command Injection sink All For One
#350 opened Apr 26, 2021 by p0wn4j 0 of 1
2
[GO]: CWE-326: Insufficient key size All For One
#349 opened Apr 26, 2021 by edvraa 0 of 1
2
[GO] CWE-1004: Sensitive cookie without HttpOnly All For One
#348 opened Apr 26, 2021 by edvraa 0 of 1
[Python] CWE-943: Add NoSQL Injection Query All For One
#342 opened Apr 14, 2021 by mrthankyou 1 of 1
1
ihsinme: CPP Add query for CWE-783 Operator Precedence Logic Error When Use Bool Type All For One
#340 opened Apr 12, 2021 by ihsinme 1 of 1
3
[C#]: HttpOnly and Secure Cookies for .NET Core and .NET All For One
#338 opened Apr 9, 2021 by edvraa 0 of 1
2
[C#]: Deserialization sinks All For One
#337 opened Apr 9, 2021 by edvraa 0 of 1
1
[codeql-go]: Mass Add Web Framework Models With the Help of Code Generation All For One
#335 opened Apr 7, 2021 by gagliardetto 0 of 1
2
[Python]: JWT security-related queries All For One
#331 opened Apr 4, 2021 by jorgectf
C# : Add query to detect Server Side Request Forgery All For One
#325 opened Mar 22, 2021 by porcupineyhairs
[Python] CWE-522: Insecure LDAP Authentication All For One
#321 opened Mar 18, 2021 by jorgectf 1 of 1
1
[Python] CWE-287: LDAP Improper Authentication All For One
#320 opened Mar 18, 2021 by jorgectf 1 of 1
[Python] CWE-090: LDAP Injection All For One
#319 opened Mar 18, 2021 by jorgectf 1 of 1
2
[Python] CWE-400: Regular Expression Injection All For One
#318 opened Mar 18, 2021 by jorgectf 1 of 1
@agustingianni
4
[Java] CWE-470: Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection') All For One
#317 opened Mar 18, 2021 by haby0 1 of 1
6
ProTip! Type g i on any issue or pull request to go back to the issue listing page.