issues Search Results · language:Edge language:Python linked:pr linked:pr language:JavaScript language:Java language:HTML
Filter by
6.3M results
Target artifact: the Flask app session configuration / GET / and error pages (http://localhost:8000)
Attack class: policy-bypass
Discovery method: white-box (source-assisted)
Property violated: P5: ...
valid
cslongc
Target artifact: the POST /notes create endpoint of the running notes app (http://localhost:8000)
Attack class: sql-injection
Discovery method: white-box (source-assisted)
Property violated: P3: Input ...
valid
Target artifact: the POST /notes create endpoint and the rendered GET / and GET /notes/ id pages
(http://localhost:8000)
Attack class: xss
Discovery method: white-box (source-assisted)
Property violated: ...
valid
Target artifact: the POST /login endpoint of the running notes app (http://localhost:8000)
Attack class: sql-injection
Discovery method: white-box (source-assisted)
Property violated: P4: No injection ...
valid
Target artifact: the GET /notes/ id endpoint of the running notes app (http://localhost:8000)
Attack class: idor-authz
Discovery method: white-box (source-assisted)
Property violated: P1: Confidentiality ...
valid
概要
2026-04-22 リリースの OpenAI Privacy Filter(Apache-2.0、1.5B / active 50M、128k token、8 PII カテゴリ、F1 96%)と GLiNER2-PII(0.3B、42
entity types、7 言語)が汎用 LLM ベース PII redactor の新たな主要競合として登場した。README の比較表は Presidio ...
documentation
sserada
Finding F1 — SQL Injection in Migration Scripts
| Field | Value |
| --- | --- |
| CWE | CWE-89 (Improper Neutralization of Special Elements in SQL) |
| CVSS 3.1 | 9.8 (Critical) |
| Source | SAST (Semgrep) ...
needs-human-review
priority:p0
scan:2026-06-12
security
severity:critical
x3nc0n
Handle the Success and Error message in the Mark form as Favorite API.
bug
NirojShah
Le fondu se coupe pour revenir à la couleur la plus claire/foncée, sur la quasi-totalité des pages
img width= 585 height= 1266 alt= Image src=
https://github.com/user-attachments/assets/838c16a2-658a-4a14-ad56-436e6c53916a ...
bug
SprazerJu
現象
FakerStrategy(deterministic=True) のデフォルト構成で、salt がソース公開の固定文字列 fuseji-default-salt-please-override のままになる。決定モードでは surface
→ fake が sha256(salt + : + surface) で完全に決まるため、利用者が salt を上書きしないと攻撃者は『fake 値 ...
bug
security
Learn how you can use GitHub Issues to plan and track your work.
Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub IssuesProTip! Restrict your search to the title by using the in:title qualifier.
Learn how you can use GitHub Issues to plan and track your work.
Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub IssuesProTip! Restrict your search to the title by using the in:title qualifier.