mariadb.md

Reports in mariadb program:

S.No	Title	Bounty
1	vulnerable to Cross-site Request Forgery | Jira	$0.0
2	xmlrpc.php on mariadb.org can lead to DDOS and brute force attacks	$0.0
3	SSRF on jira.mariadb.org	$0.0
4	Vulnerability Report - Missing Certificate Authority Authorization rule	$0.0
5	Incorrect Permission Assignment for Critical Resource	$0.0
6	Github wiki is editable by anyone	$0.0
7	CRLF injection on https://buildbot.mariadb.org	$0.0
8	[downloads.mariadb.org] CRLF injection in case of encoded query mark	$0.0
9	CRLF injection at https://mariadb.org/.	$0.0
10	smtp service vulnerable to POODLE SSLv3	$0.0
11	Exposed debug.log file leads to information disclosure	$0.0
12	Ubuntu/Debian installation method allows key poisoning and code execution for network attacker	$0.0
13	scripts loader (denial of service) vulnerability	$0.0
14	Path traversal in command line client	$0.0
15	Named pipe connection inteception	$0.0
16	Git Config	$0.0
17	Path Traversal CVE-2021-26086 CVE-2021-26085	$0.0
18	Grafana LFI on https://grafana.mariadb.org	$0.0