discussions Search Results · repo:github/securitylab language:CodeQL
Filter by
114 results
ingithub/securitylab (press backspace or delete to remove)The language qualifier is not supported when searching discussions. Try searching for issues instead?
:
Hi everyone,
I’m new to CodeQL, so apologies if this is a trivial question. I’m trying to analyze the flow of code execution between
two points in my Java application (e.g., from the start of main to ...
:
Hi, I m having trouble tracking variable propagation.
I m writing a CodeQL query to help me trace how a model flows through a program. However, I found that using data flow
analysis or taint tracking ...
:
Unable to reproduce cve-2025-0072 vulnerability on Android Mali G615 devices mostly 6.1 based kernel devices. POC just
executing in result 49. Changed and verified all the kallsyms symbol offsets and kernel ...
:
I tried the exploit for CVE-2023-6241. It works perfectly fine on Pixel 8.
But, when I tried extending that to other vulnerable non-Pixel devices, it showed an error - CANNOT FIND REUSED PAGE::
ILLEGAL ...
:
I’ve been working on an open‑source Node.js library called dssrf. It introduces a strict outbound‑request validation
layer designed to prevent applications from unintentionally reaching internal service ...
:
I m currently attempting to reproduce the PoC, but I seem to be coming up short. I m working with a fresh install of
Plucky Puffin using an iso downloaded from the Ubuntu website, and I m following the ...
:
Recently I discovered an RCE in python-socketio (details available here).
The maintainer of this project @miguelgrinberg has rated this vulnerability CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L
but I ...
:
This statement is true given the context of the article, but read in isolation is quite misleading and can lead to a
dangerous misunderstanding:
Due to the dangers inherent to automatic processing of ...
:
Hi everyone,
I m trying to use CodeQL to analyze async code that utilizes aiohttp.ClientSession.get(...). However, I’m having trouble
locating the call to session.get(...) using the API::Node class.
...
:
the cookies in my fingerprint browser seem to have been hacked, and they were able to log into my Facebook account
without my username and password. Can you help me troubleshoot this?
