Skip to content

Issues: google/tsunami-security-scanner-plugins

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

110 Open 277 Closed
110 Open 277 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Issues list

AI PRP: RCE in infiniflow/ragflow (CVE-2024-12433)
#587 opened Jan 24, 2025 by am0o0
AI PRP: Pickle deserialization on recv_pyobj method of pyZMQ pacakge
#586 opened Jan 23, 2025 by mr-mosi
PRP: CVE-2019-9670 - Synacor Zimbra XXE Contributor main The main issue a contributor is working on (top of the contribution queue). PRP:Accepted
#579 opened Dec 19, 2024 by LeonardoE95
1
PRP: HyperSQL weak credential tester Contributor main The main issue a contributor is working on (top of the contribution queue). PRP:Accepted
#576 opened Dec 18, 2024 by GiuseppePorcu
1
AI PRP: Unauthenticated Remote Code Execution in stitionai/devika
#575 opened Dec 17, 2024 by mr-mosi
@mr-mosi
1
XWiki allows RCE through macro descriptions and XWiki.XWikiSyntaxMacrosList (CVE-2024-55877)
#574 opened Dec 16, 2024 by YuriyPobezhymov
@YuriyPobezhymov
6
AI PRP: RCE in UpTrain Contributor main The main issue a contributor is working on (top of the contribution queue).
#573 opened Dec 16, 2024 by lanced00m
@lanced00m
3
PRP: CVE-2024-4577 - PHP-CGI RCE Contributor main The main issue a contributor is working on (top of the contribution queue). PRP:Accepted
#572 opened Dec 16, 2024 by LeonardoE95
1
PRP: Apache Axis2 weak credential tester Contributor main The main issue a contributor is working on (top of the contribution queue). PRP:Accepted
#569 opened Dec 12, 2024 by GiuseppePorcu
1
PRP: Request CVE-2024-53677 Remote Code Execution Vulnerability in Apache Struts
#568 opened Dec 12, 2024 by xu-xiang
@xu-xiang
1
AI PRP: RCE by Pickle Deserialization via AsyncEngineRPCServer() in vllm-project/vllm Contributor queue When a contributor has already one issue/PR in review, we put the following ones on hold with this.
#564 opened Dec 7, 2024 by lanced00m
@lanced00m
AI PRP: RCE by Pickle Deserialization via recv_object() in vllm-project/vllm Contributor queue When a contributor has already one issue/PR in review, we put the following ones on hold with this.
#563 opened Dec 7, 2024 by lanced00m
@lanced00m
2
AI PRP: Weak credential tester for man-group/dtale Contributor queue When a contributor has already one issue/PR in review, we put the following ones on hold with this.
#562 opened Dec 7, 2024 by VickyTheViking
@VickyTheViking
AI PRP: Unauthenticated Remote Command Execution in man-group/dtale Contributor queue When a contributor has already one issue/PR in review, we put the following ones on hold with this.
#561 opened Dec 7, 2024 by VickyTheViking
@VickyTheViking
AI PRP: RCE in bentoml Contributor main The main issue a contributor is working on (top of the contribution queue).
#560 opened Dec 7, 2024 by VickyTheViking
@VickyTheViking
1
AI Request: OS Command Injection in intel/neural-compressor ai-bounty-prp Identify an AI bounty plugin Contributor queue When a contributor has already one issue/PR in review, we put the following ones on hold with this. PRP:Accepted
#555 opened Nov 27, 2024 by devampkid
@devampkid
1
AI Plugin: Command injection in audioToWav in mudler/localai ai-bounty-prp Identify an AI bounty plugin Contributor main The main issue a contributor is working on (top of the contribution queue). PRP:Accepted
#554 opened Nov 27, 2024 by devampkid
@devampkid
1
AI PRP: Request LocalAI Remote Code Execution via Malicious Configuration File ai-bounty-prp Identify an AI bounty plugin PRP:Accepted
#551 opened Nov 19, 2024 by maoning
8
AI PRP: Request CVE-2024-5982 Path Traversal Causes Arbitrary Upload (RCE), Arbitrary Directory Creation, and File Content Leakage (First Column of CSVs) in chuanhuchatgpt ai-bounty-prp Identify an AI bounty plugin PRP:Accepted
#550 opened Nov 19, 2024 by maoning
@OccamsXor
4
PRP: CVE-2024-45216 - Apache Solr Authentication Bypass Contributor queue When a contributor has already one issue/PR in review, we put the following ones on hold with this.
#545 opened Oct 29, 2024 by W0ngL1
@W0ngL1
2
PRP: Request GoAnywhere MFT Authentication Bypass vulnerability (CVE-2024-0204) Contributor queue When a contributor has already one issue/PR in review, we put the following ones on hold with this.
#542 opened Oct 2, 2024 by SuperX-SIR
@SuperX-SIR
PRP: Request GoAnywhere MFT RCE (CVE-2023-0669) Contributor main The main issue a contributor is working on (top of the contribution queue).
#540 opened Sep 20, 2024 by SuperX-SIR
1
@SuperX-SIR
5
AI PRP: Commnad injection in significant-gravitas/autogpt ai-bounty-prp Identify an AI bounty plugin Contributor main The main issue a contributor is working on (top of the contribution queue).
#536 opened Sep 12, 2024 by am0o0
@am0o0
2
PIP: Apache DolphinScheduler Default Credentials Tester with RCE Contributor queue When a contributor has already one issue/PR in review, we put the following ones on hold with this.
#531 opened Sep 2, 2024 by hayageek
@hayageek
1
PRP: CVE-2024-27348 - RCE in Apache HugeGraph Server Contributor queue When a contributor has already one issue/PR in review, we put the following ones on hold with this.
#530 opened Sep 2, 2024 by hayageek
@hayageek
1
ProTip! Type g p on any issue or pull request to go back to the pull request listing page.