Skip to content

Pull requests: ZeroPathAI/secDevLabs-demo

New pull request New
8 Open 6 Closed
8 Open 6 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Assigned to nobody Loading
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

Fix insecure deserialization by replacing pickle with JSON for session cookie handling in Python.
#14 opened Jul 7, 2025 by zeropath-ai bot Loading…
Replace insecure pickle serialization with safe JSON serialization for session cookies to prevent arbitrary code execution.
#12 opened Jul 7, 2025 by zeropath-ai bot Loading…
Fix insecure session cookie tampering by signing cookies with a secret key using SHA256.
#13 opened Jul 7, 2025 by zeropath-ai bot Loading…
Sanitize user input by replacing innerHTML with textContent to prevent XSS in message username and content rendering.
#11 opened Jul 7, 2025 by zeropath-ai bot Loading…
Fix SSTI by escaping user input and removing tornado.template.Template usage for name parameter in server.py
#10 opened Jul 7, 2025 by zeropath-ai bot Loading…
Replace insecure Pickle deserialization in cookie handling with safe JSON serialization to prevent remote code execution.
#9 opened Jul 7, 2025 by zeropath-ai bot Loading…
4
Update app.js
#7 opened Feb 3, 2025 by r0path Loading…
1
"Fix authorization bypass in GetTicket to ensure users can only access their own tickets."
#3 opened Feb 3, 2025 by zeropath-ai bot Loading…
2
ProTip! Follow long discussions with comments:>50.