Sim4n6

icon indicating a website link https://sim4n6.beehiiv.com icon indicating an email [email protected]

Results 51 comments of Sim4n6

"RuntimeError: Cannot change server.via on open connection" when using duplicate-modify-replay.py with upstream mode enabled

![image](https://user-images.githubusercontent.com/13036531/225757995-739d9d9f-f996-4f29-9806-762f26b6a978.png)

Unresolved SSRF in webhook

Indeed, this is what lead to this security report https://huntr.com/bounties/f57e0882-8a85-4120-97a3-de7bdb8965a4 ...

Unresolved SSRF in webhook

Hi, any update on this please?

Unresolved SSRF in webhook

Do you have any bug bounty reward program for identifying vulnerabilities and suggesting fixes please?

Application-level Denial-of-Service due to a One Million Unicode attack when a Report is Uploaded Inbox

Issue submitted after via email you requested that I do so.

Application-level Denial-of-Service due to a One Million Unicode attack when a Report is Uploaded Inbox

I would also suggest enabling private vulnerability reporting : https://docs.github.com/en/code-security/security-advisories/working-with-repository-security-advisories/configuring-private-vulnerability-reporting-for-a-repository

Add CLI option to filter CWE IDs

perfect !

[Python] Add Unicode DoS (qhelp, tests and the query)

One detail please, I've got this unusual error : ``` Could not evaluate queries in /home/sim4n6/Desktop/GhSec/codeql-fork-final/python/ql/test/experimental/query-tests/Security/CWE-770: com.semmle.util.concurrent.UnhandledAsyncException: 1 asynchronous exceptions caught A fatal error occurred: Cant write tuple pool file...

[Python] Add Unicode DoS (qhelp, tests and the query)

The path limitation issue due to the encrypted disk was the issue indeed.

[Python] Add Unicode DoS (qhelp, tests and the query)

Hi @yoff , I see that some checks are still failing and blocking the merge. Is there something else that needs to be done, please? by the way, I did...