issues Search Results · language:Edge language:Python linked:pr linked:pr language:Java language:Java language:JavaScript
Filter by
5.8M results
Severity: Low · CWE-204 · From security review report.
Where
app/routers/auth_routes.py:81-84 returns An account with that email already exists. Login already uses a generic
message.
Impact
Lets an ...
security
severity:low
web1701
Severity: Low · CWE-79 · From security review report.
Where
static/js/cigar_form.js:14-18 ratingRow() injects value= ${source || } into innerHTML unescaped. Reached via edit and
the ?clone= path (:159); ...
security
severity:low
Severity: Medium · CWE-307 · From security review report.
Where
app/routers/auth_routes.py:99-110 (/login) — no throttling/lockout/backoff. scrypt cost helps but attempts are
unbounded.
Impact
Online ...
security
severity:medium
Severity: Medium · CWE-693 / CWE-1021 · From security review report.
Where
app/main.py installs only SessionMiddleware — no CSP, X-Content-Type-Options, X-Frame-Options/frame-ancestors, or
Referrer-Policy. ...
security
severity:medium
Severity: Medium · CWE-614 · From security review report.
Where
app/main.py:39-44 — SessionMiddleware(..., https_only=False) is hardcoded.
Impact
The auth cookie may be sent over plaintext HTTP and ...
security
severity:medium
Severity: High · CWE-79 · From security review security_report/sec_review_toasted-stogie_2026-06-06_11-59-24.md
Where
- Sink: static/js/app.js smokeCommonFields() (~lines 95-99, 111-112) builds innerHTML ...
security
severity:high
Currently we always using headers for OAuth 2.0 Tokens
curl --header Authorization: Bearer your_oauth_token https://gitlab.com
However, for personal access token we need
curl --header PRIVATE-TOKEN: ...
ruspl-afed
bug(models): picked model reverts to the previous/default model on send (likely #3448 profile-aware resolution, v0.51.290)
Summary
A user changes the model in the composer picker, sends a message, and ...
bug
sprint-candidate
nesquena-hermes
Problem Statement
During bidding, after the human draws a monster, they must either Add to dungeon or sacrifice equipment to discard the
drawn card instead. Today the human chooses sacrifice via a dropdown ...
enmaku
Khắc phục sự cố sập tiến trình đóng gói ngầm tại bước Build WAR with Gradle trên môi trường GitHub Actions với thông báo
lỗi: Error: Unable to access jarfile .../gradle-wrapper.jar.
KachiKun19
Learn how you can use GitHub Issues to plan and track your work.
Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub IssuesProTip! Restrict your search to the title by using the in:title qualifier.
Learn how you can use GitHub Issues to plan and track your work.
Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub IssuesProTip! Restrict your search to the title by using the in:title qualifier.