Carlos Andres Ramirez
Carlos Andres Ramirez
### Description XSS vulnerability exists in the default error response when running AMBER in DEV environment. ### Steps to Reproduce When running amber in the default DEV environment, the application...
Hello libheif team, I have found an issue in libheif that severely impacts the availability and potentially the integrity (depending on context) of software systems that utilize the library. As...
Hello Allegro team, I've done a pull request to establish a security policy for Allegro (SECURITY.md). Pull request ID: https://github.com/liballeg/allegro5/pull/1221 # Security issues I'm a security researcher and long time...
Hello team, I just found out that, when you create a scaffold/resource/route that contains "end" in the name, then the parsing of the routing file will fail next time. Basically,...
#### Summary In src/api/tooltips/tooltipMixins.js and src/api/tooltips/Tooltip.js Tooltips are created and displayed. If the tooltip’s `parentElement` is removed from the DOM before the tooltip `show()` method is executed, the tooltip may...
#### Summary In [tickUtils.js](https://github.com/nasa/openmct/blob/master/src/plugins/plot/tickUtils.js) the tick generation utilities (`tickStep()`, `ticks()`, `getLogTicks()`), two critical numerical stability defects exist: division by zero/NaN due to non-positive count arguments, and incorrect input validation for...