Skip to content

VRT New Vulnerability Addition Request #450

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
prithvi1337 opened this issue Feb 20, 2025 · 1 comment
Open

VRT New Vulnerability Addition Request #450

prithvi1337 opened this issue Feb 20, 2025 · 1 comment

Comments

@prithvi1337
Copy link

I request the addition of new vulnerabilities to the Vulnerability Rating Taxonomy (VRT). Based on recent findings, incorporating these vulnerabilities will enhance its coverage and accuracy.

  1. XPath injection (P2 - Server-Side Injection --> XPath injection)
  2. GraphQL Introspection Enabled (P5 - Sensitive Data Exposure --> GraphQL Introspection Enabled)

These vulnerabilities have been observed in real-world scenarios and could help improve the assessment process. Please let me know if any additional information or justification is required. Looking forward to your feedback.
@TimmyBugcrowd
Copy link
Contributor

Added to the agenda for the next meeting. I will update you soon and let you know what the rest of the team thinks about this.

TimmyBugcrowd added a commit that referenced this issue Apr 20, 2025
@TimmyBugcrowd
GraphQL Introspection Enabled - P5
a1cf9a0 
#450
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@prithvi1337 @TimmyBugcrowd