The Wayback Machine - https://web.archive.org/web/20200522234237/https://github.com/github/securitylab/issues
Skip to content

/ securitylab

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

36 Open 19 Closed
36 Open 19 Closed
Author
Filter by author
Label
Filter by label
Use alt + click/return to exclude labels.
Projects
Filter by project
Milestones
Filter by milestone
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀
Golang : Add Email Content Injection query All For One
#100 opened May 21, 2020 by porcupineyhairs
Golang : Improvements to existing TaintTracking configuration All For One
#99 opened May 21, 2020 by porcupineyhairs
Golang : Add MongoDb NoSQL injection sinks All For One
#98 opened May 21, 2020 by porcupineyhairs
Golang : Improvements to Golang SSRF query All For One
#97 opened May 21, 2020 by porcupineyhairs
Go: Mark WebSocket reads as untrusted All For One
#96 opened May 21, 2020 by porcupineyhairs
Java : add MongoDB injection sinks All For One
#95 opened May 21, 2020 by porcupineyhairs
Java : Add query to detect Server Side Template Injection All For One
#94 opened May 21, 2020 by porcupineyhairs
Python : Add query to detect Server Side Template Injection All For One
#93 opened May 21, 2020 by porcupineyhairs
Python : Add Xpath injection query All For One
#92 opened May 21, 2020 by porcupineyhairs
Python : Add support for detecting XSLT Injection All For One
#91 opened May 21, 2020 by porcupineyhairs
[Java]: CWE-523 Insecure HSTS configuration All For One
#90 opened May 20, 2020 by luchua-bc 0 of 1
CSHARP: Experimental query for tainted WebClient All For One
#89 opened May 20, 2020 by h3ku 1 of 1
Java: CWE-297 Insecure JavaMail SSL configuration All For One
#86 opened May 17, 2020 by luchua-bc 0 of 1
11
Java: Add SSRF query for Java All For One
#84 opened May 13, 2020 by porcupineyhairs
3
gagliardetto: Query to detect incorrect conversion between numeric types All For One
#82 opened May 12, 2020 by gagliardetto 0 of 1
[Java] CWE-918: Query for server side request forgery (SSRF) detection All For One
#80 opened May 12, 2020 by random-debug 1 of 1
CodeQL query for unsafe TLS versions All For One
#79 opened May 10, 2020 by artem-smotrakov 1 of 1
CodeQL query for disabled revocation checking All For One
#78 opened May 9, 2020 by artem-smotrakov 1 of 1
CodeQL query to detect Server-Side Template Injections (JavaScript) All For One
#77 opened May 6, 2020 by monkey-junkie 1 of 1
CodeQL query to detect XSLT injections All For One
#75 opened Apr 27, 2020 by ggolawski 0 of 1
CodeQL query for MVEL injections All For One
#72 opened Apr 23, 2020 by artem-smotrakov 1 of 1
CodeQL query to detect Unified EL injections All For One
#71 opened Apr 22, 2020 by ggolawski 0 of 1
CodeQL query to find if an Django application is vulnerable to CSRF All For One
#70 opened Apr 20, 2020 by Dhayalanb 1 of 1
CodeQL query to detect OGNL injections All For One
#69 opened Apr 19, 2020 by ggolawski 0 of 1
CodeQL query for SpEL injections All For One
#67 opened Apr 18, 2020 by artem-smotrakov 1 of 1
ProTip! Type g i on any issue or pull request to go back to the issue listing page.
You can’t perform that action at this time.