Security: JLLeitschuh/security-research
Security
No security policy detected
This project has not set up a SECURITY.md file yet.
Report a vulnerability-
commons-io: org.apache.commons.io.FileUtils::mkdirs vulnerable to directory hijacking vulnerabilityGHSA-4jxc-934w-gvpr published
May 26, 2023 by JLLeitschuhHigh -
pipo-snakeyaml: Remote Code Execution Vulnerability via SnakeYaml YAML deserializationGHSA-v956-x5m6-xj62 published
Nov 15, 2024 by JLLeitschuhCritical -
Nepxion/Discovery: Remote Code Execution via SnakeYAML Deserialization GadgetsGHSA-22cq-8f5q-p5g2 published
Feb 2, 2023 by JLLeitschuhCritical -
Improper Limitation of a Pathname to a Restricted Directory ('Partial-Path Traversal') during unzip in react-native-code-pushGHSA-7hfp-mpq6-2jhf published
May 16, 2022 by JLLeitschuhHigh -
Improper Limitation of a Pathname to a Restricted Directory ('Partial Path Traversal') in io.whitesource:curekitGHSA-hfmw-fx2m-jj4c published
Feb 27, 2023 by JLLeitschuhCritical -
Insufficiently Protected Credentials via Insecure Temporary File in org.apache.nifi:nifi-single-user-utilsGHSA-rvp4-r3g6-8hxq published
Apr 6, 2022 by JLLeitschuhModerate -
Temporary Directory Hijacking to Local Privilege Escalation Vulnerability in org.springframework.boot:spring-bootGHSA-cm59-pr5q-cw85 published
Feb 16, 2022 by JLLeitschuhHigh -
apache/cloudstack: Privileged escalation due to Predictable Seed in Pseudo-Random Number Generator (PRNG) and Use of Insufficiently Random ValuesGHSA-vpcc-9rh2-8jfp published
Mar 10, 2022 by JLLeitschuhModerate -
Insecure Temporary File in google / sa360-webquery-bigqueryGHSA-7fjx-657r-9r5h published
Mar 9, 2022 by JLLeitschuhModerate -
Insecure Temporary File in google / data-transfer-projectGHSA-22c6-wcjm-qfjg published
Mar 9, 2022 by JLLeitschuhModerate
Learn more about advisories related to JLLeitschuh/security-research in the GitHub Advisory Database