This page collects WhisperX intelligence signals tagged #code-vulnerability. It is designed for humans, search engines, and AI agents: each item links to a canonical source-backed record with sector, source, timestamp, credibility, and exportable structured data.
The WAST security scanner's RedirectScanner module is hardcoded to send all its test traffic to the real, publicly registered domain 'evil.com'. This design flaw forces every scan to generate live DNS lookups and HTTP redirect attempts to a third-party host outside the project's control, creating an uncontrolled extern...
A critical security vulnerability has been flagged in the codebase of the Juice Shop project. The automated security scan identified a Template Object Injection flaw in the `routes/dataErasure.ts` file at line 87, where a template object depends on a user-provided value. This type of vulnerability is a severe risk, as ...