Finding Vulnerabilities through GitHub

GitHub is a very good software repository but it can be also used to find vulnerabilities using its own search engine…

In fact using its search engine you can look around to find vulnerable code and or application. In this article i’ll do few search for some well-know php bugs…

LOCAL FILE INCLUSION (LFI)

365 recors found

LFI

 

REMOTE CODE EXECUTION (RCE)

593 records found

RCE

ARBITRARY FILE UPLOAD

24907 records found

AFU

Searching for php GetImageSize (4892 records found)

afu1

(UN)SERIALIZABLE OBJECT

309 records found

unser

HTTP HOST HEADER INJECTION

24121 records found

HEADERINJ

 11615 records found

lnkref

16124 records found

httphin

 

 CROSSDOMAIN (CSRF)

~ 2M

xdomain

To be continued and improved…

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s