Skip to content

Pull requests: r0path/demorepo1

New pull request New
197 Open 97 Closed
197 Open 97 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Assigned to nobody Loading
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

Update upload.php
#294 opened Feb 2, 2026 by hugbubby Loading…
5
Mitigate RCE in xss.php: validate and safely execute cmd via whitelist and escaping
#293 opened Jan 16, 2026 by zeropath-ai bot Loading…
Encode echoed user input with htmlspecialchars to prevent reflected XSS in xss.php
#292 opened Jan 16, 2026 by zeropath-ai bot Loading…
Disable unsafe system() execution in asdas3d.php to prevent RCE
#291 opened Jan 15, 2026 by zeropath-ai-staging bot Loading…
R0path patch 20 test
#290 opened Dec 4, 2025 by r0path Loading…
4
Create basicrce.php
#284 opened Aug 29, 2025 by r0path Loading…
4
Create test123.php
#283 opened Aug 28, 2025 by r0path Loading…
3
Create aasdasda.php
#282 opened Aug 28, 2025 by r0path Loading…
5
Create upload1.php
#280 opened Aug 28, 2025 by r0path Loading…
2
Create xss.php
#275 opened Aug 5, 2025 by r0path Loading…
3
Remote code execution via Flask debug mode enabled - High
#274 opened Jul 25, 2025 by zeropath-ai-dev bot Loading…
8
Update main.py
#273 opened Jul 14, 2025 by hugbubby Loading…
Remote Code Execution via /login endpoint - Critical
#272 opened Jul 11, 2025 by zeropath-ai-dev bot Loading…
Create .env
#271 opened Jul 10, 2025 by rek7 Loading…
1
Remote Code Execution via eval() on user input - Critical
#270 opened Jul 10, 2025 by zeropath-ai-dev bot Loading…
Create test2.py
#269 opened Jul 10, 2025 by rek7 Loading…
2
Create test.py (secret detection not internet connected validation test)
#268 opened Jul 10, 2025 by rek7 Loading…
2
Shell Injection via os.system() in get_user() - Critical
#264 opened Jul 8, 2025 by zeropath-ai-dev bot Loading…
Fix access control vulnerability in get_note endpoint by restricting note access to the authenticated user only.
#237 opened Jun 26, 2025 by zeropath-ai-dev bot Loading…
Fix command injection in login handler by removing insecure os.system(password) call
#236 opened Jun 26, 2025 by zeropath-ai-dev bot Loading…
Fix XSS vulnerability by sanitizing 'search' GET parameter with htmlspecialchars in index.php
#225 opened Jun 24, 2025 by zeropath-ai-dev bot Loading…
Fix OS Command Injection by removing unsafe execution of user-controlled 'username' input.
#215 opened Jun 17, 2025 by zeropath-ai-dev bot Loading…
5
Fix OS Command Injection vulnerability by removing insecure os.system() call with unsanitized user input.
#214 opened Jun 12, 2025 by zeropath-ai-dev bot Loading…
4
Add endpoint comments to the login function to document authentication behavior and response codes.
#206 opened Jun 6, 2025 by zeropath-ai-dev bot Loading…
Add missing comment for login function endpoint and remove insecure system call to enhance security.
#204 opened Jun 5, 2025 by zeropath-ai-dev bot Loading…
5
ProTip! Type g i on any issue or pull request to go back to the issue listing page.