-
Notifications
You must be signed in to change notification settings - Fork 207
Road map
Kohei Tamura edited this page Mar 23, 2017
·
35 revisions
-
EasyBuggy 1.3.0 (2017 Summer)
- Unrestricted Upload
- Upload File Execution (implemented)
- File Space Denial of Service (implemented)
- Image Library Flaw Exploited
- Unrestricted login page
- Open Redirect (implemented)
- HTTP Header Injection
- Brute-force Attack (implemented)
- Replay Attack
- CSS injection
- OGNL Expression Injection (implemented)
- Cross-Site Request Forgery (implemented)
- Directory Traversal
- Unintended File Disclosure (implemented)
- Clickjacking (implemented)
- Content-Type Sniffing
- Session Hijacking
- Session Fixation
- Unrestricted Upload
-
EasyBuggy 2.0.0 (2017 Winter)
- False Sharing
- Classloader Leak
- Stop the World
- Humongous Allocation Failure
- JVM Crash (SIGSEGV)
- JVM Crash (EXCEPTION_ACCESS_VIOLATION)
- JVM Crash (EXCEPTION_STACK_OVERFLOW)
- Infinite Recursion SQL
- Insufficient OAuth 2.0 / OpenID Connect implementation
- Cross-Site WebSocket Hijacking