Feras Al-Kassar

Thank you for your response. Yes exactly that solve the issue. I would like also to mention to security issue in https://github.com/xiebruce/PicUploader/blob/master/settings/SettingController.php ```php public function getStorageParams($params){ $key = $params['key']; $jsonFile...

The same error with the resume option. should be `self.optimizer.optimizer = resume_optim.__class__(filter(lambda p: p.requires_grad, model.parameters()), **defaults)`

Thank you for your response. CVE-2021-43682 is assign to this discovery. thinkphp-bjyblog is affected by a Cross Site Scripting (XSS) vulnerability in AdminBaseController.class.php. The exit function will terminate the script...

Similar sinks that I can see there is a source pass to them (Possible vulnerabilities). In file https://github.com/baijunyao/thinkphp-bjyblog/blob/master/ThinkPHP/Mode/Api/Controller.class.php ```php // line 61 exit(json_encode($data)); // line 69 $handler = isset($_GET[C('VAR_JSONP_HANDLER')]) ?...

CVE-2021-43689 is assigned to this discovery. manage (last update Oct 24, 2017) is affected by is affected by a Cross Site Scripting (XSS) vulnerability in Application/Home/Controller/GoodsController.class.php. The exit function will...

CVE-2022-36748 is assigned to the first report in /master/index.php

CVE-2022-41442 is assigned to the second report.

Yes, the vulnerability already fixed. thanks for your confirmation. It is just some process for gaining a CVE which will help me in my research. When the person find a...

Thank you for your response. I sent the pull request.

CVE-2022-36749 is assigned for this report.