LioTree
- OS Version: windows11 - Browser Version: chrome 102.0.5005.115 - Browser Addon Version: 0.2.12 - Neovim Plugin Version: 0.2.12 ### What I tried to do Enter Chinese using the Microsoft...
if `://` is in the path of url, gleezcms will use curl library to send request. This vulnerability is far more dangerous than it looks like because curl supports gopher...
I found that I could not get any result when searching files, sometimes cursor couldn't even pop up the search box. And I found something like this in log.log: It...
Hi, I would like to report some serious security vulnerabilities. # SQL Injection ## `HistoryController::getList` https://github.com/xiebruce/PicUploader/blob/2ef5b21cb2ae831ff5a56473b0f1315a6f81ff65/settings/HistoryController.php#L107 The variable `$keyword` is directly controlled by `$_GET['keyword']`, which allows an attacker to inject...
Hi, there is an external control of file name or path vulnerability (CWE-73) in `inc/modules/settings/Admin.php`. At line 371, the file path and content to write are both partially controlled by...
Hi, there is a code injection vulnerability. In https://github.com/liu21st/onethink/blob/f705308bc24611af650e6830e3be2a07dd8bb823/wwwroot/Application/Admin/Controller/AddonsController.class.php#L38, `$data` is controlled by users. In https://github.com/liu21st/onethink/blob/f705308bc24611af650e6830e3be2a07dd8bb823/wwwroot/Application/Admin/Controller/AddonsController.class.php#L226, `$data['config']` is written into a php file directly. POC: ```php POST /admin.php?s=/Addons/build.html HTTP/1.1 Host:...
Hi, there is a SQL injection vulnerability in Onethink 1.1 In https://github.com/liu21st/onethink/blob/f705308bc24611af650e6830e3be2a07dd8bb823/wwwroot/Application/Admin/Controller/ModelController.class.php#L148, `$table` is controlled by users. In https://github.com/liu21st/onethink/blob/f705308bc24611af650e6830e3be2a07dd8bb823/wwwroot/Application/Admin/Model/ModelModel.class.php#L122, `$table` is inserted into SQL directly. POC: ``` POST /admin.php?s=/Model/generate.html HTTP/1.1...
issue: https://github.com/epfl-lara/stainless/issues/1542
```scala import stainless.lang.* def test1(): String = { val a = "hello" a.bigSubstring(1, 3) } def test2(): String = { val a = "hello" a.bigSubstring(1) } ``` ``` [ Info...
When I tried the following example, I got the error "ADT Value must appear only in strictly positive positions of Value." I got the same result using Map[String, Value]. ```scala...