Skip to content

Issues: google/tsunami-security-scanner-plugins

Beta
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

119 Open 289 Closed
119 Open 289 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Issues list

PRP: Zyxel Firewall Unauthenticated Remote Command Injection
#635 opened May 3, 2025 by vishwaraj101
PRP: Remote Code Execution in Craft CMS (CVE-2025-32432) Contributor queue When a contributor has already one issue/PR in review, we put the following ones on hold with this. PRP:Accepted
#634 opened Apr 29, 2025 by theGEBIRGE
@theGEBIRGE
1
Pre-Auth RCE in Erlang/OTP SSH server Contributor main The main issue a contributor is working on (top of the contribution queue). PRP:Accepted
#633 opened Apr 24, 2025 by mr-mosi
@mr-mosi
1
PRP: Exposed Dolibarr ERP 20.0 panel leading to RCE Contributor main The main issue a contributor is working on (top of the contribution queue). PRP:Accepted
#629 opened Apr 11, 2025 by vishwaraj101
@vishwaraj101
2
AI PRP: RCE in BentoML's runner server (CVE-2025-32375) Contributor main The main issue a contributor is working on (top of the contribution queue). PRP:Accepted
#628 opened Apr 11, 2025 by theGEBIRGE
@theGEBIRGE
1
PRP: Tomcat Session Deserialization Remote Code Execution (CVE-2025-24813) Contributor main The main issue a contributor is working on (top of the contribution queue). PRP:Accepted
#626 opened Apr 9, 2025 by am0o0
@am0o0
1
PRP: CVE-2024-56325 Apache Pinot Authentication Bypass Issue Contributor main The main issue a contributor is working on (top of the contribution queue). PRP:Accepted
#621 opened Mar 28, 2025 by lilou1337
@lilou1337
1
AI PRP: Exposed Flowise Contributor main The main issue a contributor is working on (top of the contribution queue). PRP:Accepted
#619 opened Mar 22, 2025 by YuriyPobezhymov
@YuriyPobezhymov
2
AI PRP: Exposed Ollama API Contributor main The main issue a contributor is working on (top of the contribution queue). PRP:Accepted
#618 opened Mar 21, 2025 by timoles
@timoles
6
AI PRP: Flowise allows arbitrary file write to RCE Contributor main The main issue a contributor is working on (top of the contribution queue). PRP:Accepted
#616 opened Mar 18, 2025 by YuriyPobezhymov
@YuriyPobezhymov
4
AI PRP: AutoGPT RCE with SSTI vulnerability Contributor main The main issue a contributor is working on (top of the contribution queue). PRP:Accepted
#612 opened Mar 10, 2025 by VickyTheViking
@VickyTheViking
1
AI PRP: Path Traversal in mlflow/mlflow - CVE-2024-1483 Contributor main The main issue a contributor is working on (top of the contribution queue). PRP:Accepted
#611 opened Mar 9, 2025 by crackatoa
@crackatoa
1
AI PRP: RCE via Global State Override in dtale CVE-2025-0655 Contributor main The main issue a contributor is working on (top of the contribution queue). PRP:Accepted
#610 opened Mar 8, 2025 by frkngksl
1
@frkngksl
3
AI PRP: kestra RCE Contributor queue When a contributor has already one issue/PR in review, we put the following ones on hold with this.
#605 opened Feb 24, 2025 by lanced00m
@lanced00m
1
AI PRP: RCE via Model Deserialization on install API in invoke-ai/invokeai Contributor main The main issue a contributor is working on (top of the contribution queue). PRP:Accepted
#591 opened Feb 7, 2025 by devampkid
@devampkid
1
AI PRP: Local File Inclusion in agentscope (CVE-2024-8438) Contributor main The main issue a contributor is working on (top of the contribution queue).
#588 opened Feb 3, 2025 by crackatoa
@crackatoa
3
AI PRP: RCE in infiniflow/ragflow (CVE-2024-12433) Contributor main The main issue a contributor is working on (top of the contribution queue).
#587 opened Jan 24, 2025 by am0o0
@am0o0
1
AI PRP: Pickle deserialization on recv_pyobj method of pyZMQ pacakge Contributor main The main issue a contributor is working on (top of the contribution queue). PRP:Accepted
#586 opened Jan 23, 2025 by mr-mosi
@mr-mosi
8
PRP: CVE-2019-9670 - Synacor Zimbra XXE Contributor main The main issue a contributor is working on (top of the contribution queue). PRP:Accepted
#579 opened Dec 19, 2024 by LeonardoE95
1
PRP: HyperSQL weak credential tester Contributor main The main issue a contributor is working on (top of the contribution queue). PRP:Accepted
#576 opened Dec 18, 2024 by GiuseppePorcu
1
AI PRP: Unauthenticated Remote Code Execution in stitionai/devika PRP:Inactive
#575 opened Dec 17, 2024 by mr-mosi
@mr-mosi
1
AI PRP: RCE in UpTrain Contributor main The main issue a contributor is working on (top of the contribution queue).
#573 opened Dec 16, 2024 by lanced00m
@lanced00m
3
PRP: CVE-2024-4577 - PHP-CGI RCE Contributor main The main issue a contributor is working on (top of the contribution queue). PRP:Accepted
#572 opened Dec 16, 2024 by LeonardoE95
1
PRP: Apache Axis2 weak credential tester Contributor main The main issue a contributor is working on (top of the contribution queue). PRP:Accepted
#569 opened Dec 12, 2024 by GiuseppePorcu
1
PRP: Request CVE-2024-53677 Remote Code Execution Vulnerability in Apache Struts PRP:Inactive
#568 opened Dec 12, 2024 by xu-xiang
@xu-xiang
1
ProTip! Mix and match filters to narrow down what you’re looking for.