CodeIgniter - HackerOne Reports
View on HackerOne3
Total Reports
0
Critical
1
High
0
Medium
0
Low
Vulnerable Javascript library
Reported by:
yynl
|
Disclosed:
Weakness: Violation of Secure Design Principles
If the developer forgets to remove the built in controller welcome.php it helps the attacker to identify that the site is built with Codeigniter
Reported by:
hackerneo
|
Disclosed:
High
Weakness: Information Exposure Through Directory Listing
Link sanitation bypass in xss_clean()
Reported by:
0xsyndr0me
|
Disclosed:
Weakness: Cross-site Scripting (XSS) - Generic