I’ve recently created a CodeQL query that detects LDAP injection vulnerabilities in Java code. I’ve done it in scope of GitHub Security Lab bug bounty program and it was accepted, added to the list of default queries and executed on all LGTM projects (and I was awarded a $3000 bounty...
[Read More]