Codeigniter


reports in last 90 days

1

disclosed resolved issues

2

disclosed informative issues

1

disclosed N/A issues

Listed on HackerOne — Updated on 2019/10/15

Bug Title Bug Type Found By Report Info Report Status

High If the developer forgets to remove the built in controller welcome.php it helps the attacker to identify that the site is built with Codeigniter

Information Exposure Through Directory Listing hackerneo Issue was not triaged


Time to close: 0 Days and 0 hours
Not-applicable

None Vulnerable Javascript library

Violation of Secure Design Principles yynl Issue was not triaged


Time to close: 0 Days and 1 hours
Informative

No rating Link sanitation bypass in xss_clean()

Cross-site Scripting (XSS) - Generic 0xsyndr0me Time to triage: 3 Days and 1 hours


Time to close: 26 Days and 19 hours
Resolved

No rating Web Server Disclosure

Information Disclosure 12345678910 Issue was not triaged


Time to close: 0 Days and 0 hours
Informative