Filters

go/github.com/cli/cliConnecting to a malicious Codespaces via GH CLI could allow command execution on the user's computer

First published (updated )

GitHub Enterprise ServerInfoleak

EPSS
0.05%
First published (updated )

GitHub Enterprise ServerAn Improper Verification of Cryptographic Signature vulnerability was identified in GitHub Enterprise Server that allowed SAML SSO authentication to be bypassed when the encrypted assertions feature was enabled

EPSS
0.83%
First published (updated )

GitHub Enterprise ServerAn improper privilege management vulnerability allowed arbitrary workflows to be committed using an …

EPSS
0.06%
First published (updated )

GitHub Enterprise ServerXSS

EPSS
0.05%
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

npm/@actions/artifactArbitrary File Write via artifact extraction in actions/artifact

7.5
First published (updated )

GitHub Enterprise ServerAn XML signature wrapping vulnerability was present in GitHub Enterprise Server (GHES) when using SA…

EPSS
0.04%
First published (updated )

GitHub Enterprise ServerIncorrect Authorization allows read access to issues in GitHub Enterprise Server

EPSS
0.04%
First published (updated )

GitHub Enterprise ServerAn Incorrect Authorization vulnerability was identified in GitHub Enterprise Server, allowing an att…

EPSS
0.05%
First published (updated )

GitHub Enterprise ServerGitHub Enterprise Server Information Disclosure Vulnerability Exposes Private Repository Names via Deploy Keys

EPSS
0.04%
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

GitHub Enterprise ServerSecurity misconfiguration was identified in GitHub Enterprise Server that allowed sensitive data exposure

EPSS
0.04%
First published (updated )

GitHub Enterprise ServerImproper authorization allows read access to issue content in GitHub Enterprise Server

EPSS
0.04%
First published (updated )

GitHub Enterprise ServerImproper authorization allows persistent access in GitHub Enterprise Server

EPSS
0.04%
First published (updated )

GitHub Enterprise ServerCross Site Request Forgery was identified in GitHub Enterprise Server that allowed write in a user owned repository

EPSS
0.04%
First published (updated )

GitHub Enterprise ServerDenial of Service vulnerability was identified in GitHub Enterprise Server that allowed resource exhaustion

7.7
EPSS
0.04%
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

GitHub Enterprise ServerImproper Privilege Management allows for access to unauthorized repository content during migration

EPSS
0.04%
First published (updated )

The RegisterUS House of Reps tells staff: No Microsoft Copilot for you!

First published (updated )

The RegisterOver 170K users caught up in poisoned Python package ruse

First published (updated )

BleepingComputerHackers poison source code from largest Discord bot platform

First published (updated )

BleepingComputerOver 12 million auth secrets and keys leaked on GitHub in 2023

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

GitHub Enterprise ServerCommand injection vulnerability was identified in GitHub Enterprise Server that allowed privilege escalation in the Mangement Console

First published (updated )

GitHub Enterprise ServerCommand injection vulnerability was identified in GitHub Enterprise Server that allowed privilege escalation in the Mangement Console

First published (updated )

GitHub Enterprise ServerCommand injection vulnerability was identified in GitHub Enterprise Server that allowed privilege escalation in the Mangement Console

First published (updated )

GitHub Enterprise ServerCommand injection vulnerability was identified in GitHub Enterprise Server that allowed privilege escalation in the Mangement Console

First published (updated )

GitHub Enterprise ServerCommand injection vulnerability was identified in GitHub Enterprise Server that allowed privilege escalation in the Mangement Console

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

GitHub Enterprise ServerCommand injection vulnerability was identified in GitHub Enterprise Server that allowed privilege escalation in the Mangement Console

First published (updated )

GitHub Enterprise ServerCommand injection vulnerability was identified in GitHub Enterprise Server that allowed privilege escalation in the Mangement Console

First published (updated )

GitHub Enterprise ServerPath traversal vulnerability in GitHub Enterprise Server that allowed arbitrary file read with a specially crafted GitHub Pages artifact upload

First published (updated )

GitHub Enterprise ServerXSS, CSRF

First published (updated )

GitHub Enterprise ServerPrivilege Escalation by Code Injection in the Management Console in GitHub Enterprise Server

8.8
EPSS
0.06%
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

GitHub Enterprise ServerUnsafe Reflection in Github Enterprise Server leading to Command Injection

EPSS
0.37%
First published (updated )

GitHub Enterprise ServerImproper Authentication in GitHub Enterprise Server leading to Authentication Bypass for Public Repository Data

7.5
EPSS
0.06%
First published (updated )

GitHub Enterprise ServerIncorrect Authorization allows Read Access to Issue Comments in GitHub Enterprise Server

First published (updated )

GitHub Enterprise ServerIncorrect Authorization for Issue Comments in GitHub Enterprise Server

First published (updated )

GitHub Enterprise ServerInsufficient Entropy in GitHub Enterprise Server Management Console Invitation Token

8.3
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

GitHub Enterprise ServerRace Condition allows Administrative Access on Organization Repositories

First published (updated )

GitHub Enterprise ServerImproper Privilege Management allows for arbitrary workflows to be run

EPSS
0.04%
First published (updated )

GitHub Enterprise ServerRace Condition allows Unauthorized Outside Collaborator

EPSS
0.04%
First published (updated )

GitHub Enterprise ServerSensitive Information in Log File in GitHub Enterprise Server

7.2
EPSS
0.06%
First published (updated )

GitHub Enterprise ServerSensitive Information in Log File in GitHub Enterprise Server

8.1
EPSS
0.09%
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

GitHub Enterprise ServerPath traversal in GitHub Enterprise Server leading to arbitrary file reading when building a GitHub Pages site

First published (updated )

GitHub Enterprise ServerRace Condition

3.9
EPSS
0.08%
First published (updated )

GitHub Enterprise ServerImproper Privilege Management in GitHub Enterprise Server management console leads to privilege escalation

8.8
First published (updated )

GitHub Enterprise ServerImproper access control in all versions of GitHub Enterprise Server allows unauthorized users to vie…

First published (updated )

GitHub Enterprise ServerIncorrect comparison vulnerability in GitHub Enterprise Server leading to commit smuggling

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

GitHub Enterprise ServerInformation disclosure in GitHub Enterprise Server leading to private repository leakage

First published (updated )

GitHub Enterprise ServerIncorrect comparison vulnerability in GitHub Enterprise Server leading to commit smuggling

First published (updated )

GitHub Enterprise ServerIncorrect comparison vulnerability in GitHub Enterprise Server leading to commit smuggling

7.1
First published (updated )

Github Cmark-gfmQuadratic complexity bugs may lead to a denial of service

7.5
First published (updated )

Github Pull Requests And IssuesVisual Studio Code GitHub Pull Requests and Issues Extension Remote Code Execution Vulnerability

7.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203