2025年8月28日
assigning cve request platform #5 获取所有品牌数据的列表,
摘要: Product:platform v1.0 url:https://gitee.com/fuyang_lipengjun/platform star: 27.5 Vulnerability Report Product: platform URL: http://host/brand/queryAl 阅读全文
posted @ 2025-08-28 20:30 Aibot 阅读(361) 评论(0) 推荐(0)
assigning CVE request platform #4 queryall attribute info
摘要: Product:platform v1.0 url:https://gitee.com/fuyang_lipengjun/platform star: 27.5 Vulnerability Report Product: platform URL: http://host/attribute/que 阅读全文
posted @ 2025-08-28 20:29 Aibot 阅读(396) 评论(0) 推荐(0)
assigning cve request platform #3 获取所有属性分类数据的列表
摘要: Product:platform v1.0 url:https://gitee.com/fuyang_lipengjun/platform star: 27.5 Vulnerability Report Product: platform URL: http://host/attributecate 阅读全文
posted @ 2025-08-28 20:28 Aibot 阅读(379) 评论(0) 推荐(0)
cve request jeecgboot#4 获取所有部门信息功能
摘要: product: jeecgboot url: https://github.com/jeecgboot/JeecgBoot stars: 43.7k English Report Product: JeecgBoot URL: /api/queryAllDepartBack Title: Brok 阅读全文
posted @ 2025-08-28 19:42 Aibot 阅读(28) 评论(0) 推荐(0)
assigning cve request jeecgboot#1 滥用WebSocket消息发送功能
摘要: product: jeecgboot url: https://github.com/jeecgboot/JeecgBoot stars: 43.7k English Report Product: JeecgBoot URL: /api/system/sendWebSocketMsg Title: 阅读全文
posted @ 2025-08-28 19:36 Aibot 阅读(500) 评论(0) 推荐(0)
assigning cve request dreamercms#1 toUpdatePwd any user account password
摘要: product:dreamercms url: https://github.com/iteachyou-wjn/dreamer_cms star: 1k Vulnerability Submission Report Product: dreamer_cms URL: http://localho 阅读全文
posted @ 2025-08-28 19:22 Aibot 阅读(204) 评论(0) 推荐(0)
2025年7月13日
onxy sqli vulnerabilities
摘要: SQL Injection Vulnerability Proof of Concept (PoC) Report Date: 2025-07-13 Author: aibot Target System: Onyx Agent Search Backend 1. Executive Summary 阅读全文
posted @ 2025-07-13 20:01 Aibot 阅读(416) 评论(0) 推荐(0)
2025年7月4日
无私奉献
摘要: # 无私奉献 阅读全文
posted @ 2025-07-04 20:08 Aibot 阅读(13) 评论(0) 推荐(0)
2025年7月2日
AST,CallGraph,DataFlow,ICFG示例图
摘要: Source code // MainApp.java public class MainApp { public static void main(String[] args) { // Source点: main方法的参数被认为是污染源 String taintedData = args[0]; 阅读全文
posted @ 2025-07-02 12:17 Aibot 阅读(46) 评论(0) 推荐(0)
2025年6月29日
SQL Injection Vulnerability Due to Unvalidated LLM-Generated SQL
摘要: SQL Injection Vulnerability Due to Unvalidated LLM-Generated SQL Affected Component: sql variable in the execute method, question parameter in the ini 阅读全文
posted @ 2025-06-29 23:54 Aibot 阅读(300) 评论(0) 推荐(0)