Skip to content
View Stolichnayer's full-sized avatar
🎓
Probably procrastinating
🎓
Probably procrastinating
14 followers · 7 following

Achievements

Achievement: Pull SharkAchievement: StarstruckAchievement: Arctic Code Vault Contributor

Achievements

Achievement: Pull SharkAchievement: StarstruckAchievement: Arctic Code Vault Contributor

Highlights

Block or report Stolichnayer

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
stolichnayer/README.md

Pinned Loading

  1. CVE-2025-22828 CVE-2025-22828 Public

    Apache CloudStack vulnerability allows unauthorized access to annotations on certain resources.

    4

  2. OpenNebula-Account-Takeover OpenNebula-Account-Takeover Public

    OpenNebula contains a Race Condition vulnerability in the login process, allowing attackers to brute-force login and steal a legitimate user’s JSON Web Token (JWT), leading to Account Takeover.

    Python 1

  3. Horilla-CRM-Stored-XSS Horilla-CRM-Stored-XSS Public

    Horilla CRM ≤ v1.0.2 contains a Stored Cross-Site Scripting (XSS) vulnerability in the Leads Notes functionality, allowing authenticated attackers to inject and execute arbitrary JavaScript.

  4. mist-ce-account-takeover mist-ce-account-takeover Public

    Mist CE ≤ v4.7.1 contains a critical Broken Access Control vulnerability, allowing unauthenticated attackers to generate arbitrary API tokens and take over user accounts.

    Python

  5. mist-ce-open-redirect mist-ce-open-redirect Public

    Mist CE ≤ v4.7.1 contains an Open Redirect vulnerability, allowing attackers to redirect users to malicious sites or execute XSS attacks.

  6. mist-ce-xss mist-ce-xss Public

    Mist CE ≤ v4.7.1 contains a Stored Cross-Site Scripting (XSS) vulnerability in the tag field, allowing attackers to inject and execute malicious JavaScript.