Mike McCabe
Results
3
issues of
Mike McCabe
In the HTML report the full session secret is included in the Session Setting finding. If this report were disclosed to an outside party the application would be vulnerable to...
Is there a way to parameterize queries with Giraffez? I want to avoid any possible SQL injection when using the library.
enhancement
help wanted
Document the Devise related vulnerabilities: - Password complexity - Devise token in source - No post password change email - No lockout
Hacktoberfest