exploiting-orm-injection

Enables security professionals to exploit ORM injection vulnerabilities in web applications, aiding in data exfiltration testing.

Install this skill

83/100

Security score

The exploiting-orm-injection skill was audited on Jun 14, 2026 and we found 5 security issues across 3 threat categories. Review the findings below before installing.

Categories Tested

Security Issues

medium line 102

Template literal with variable interpolation in command context

SourceSKILL.md

102

```bash

medium line 96

Curl to non-GitHub URL

SourceSKILL.md

96	curl -s "https://target/api/articles" -H 'Content-Type: application/json' \

medium line 105

Curl to non-GitHub URL

SourceSKILL.md

105	n=$(curl -s "https://target/articles" -H 'Content-Type: application/json' \

low line 96

External URL reference

SourceSKILL.md

96	curl -s "https://target/api/articles" -H 'Content-Type: application/json' \

low line 105

External URL reference

SourceSKILL.md

105	n=$(curl -s "https://target/articles" -H 'Content-Type: application/json' \

Scanned on Jun 14, 2026

View Security Dashboard

Installation guide →

GitHub Stars 606

Rate this skill

Categorydevelopment

UpdatedJune 15, 2026

openclaw api testing security-engineer data-analyst development data analytics

xalgord/xalgorix