F.Romero

icon location Software Engineer. Cybersecurity Consultant.

Results 2 issues of F.Romero

Vulnerability - Executing commands with unsanitized folder name

### Impact _What kind of vulnerability is it?_ Command execution over an unsanitized folder name. ### Vulnerable file `XSStrike/core/updater.py` ### Vulnerable code _line 33,34_: `os.system('git clone --quiet https://github.com/s0md3v/XSStrike %s' %...

erase

erase