Filter
AND
-Infinity
0
go/github.com/cli/cliConnecting to a malicious Codespaces via GH CLI could allow command execution on the user's computer
9.6
First published (updated )
GitHub EnterpriseAn Improper Verification of Cryptographic Signature vulnerability was identified in GitHub Enterprise Server that allowed SAML SSO authentication to be bypassed when the encrypted assertions feature was enabled
9.5
EPSS
0.83%
First published (updated )
GitHub EnterpriseAn XML signature wrapping vulnerability was present in GitHub Enterprise Server (GHES) when using SA…
9.8
EPSS
0.04%
First published (updated )
GitHub EnterpriseAn authentication bypass vulnerability was present in the GitHub Enterprise Server (GHES) when utili…
10
EPSS
0.04%
First published (updated )
GitHub EnterpriseImproper input validation vulnerability was identified in GitHub Enterprise Server that allowed privilege escalation in the Management Console
9.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
GitHub EnterpriseCommand injection vulnerability was identified in GitHub Enterprise Server that allowed privilege escalation in the Mangement Console
9.1
First published (updated )
GitHub EnterpriseCommand injection vulnerability was identified in GitHub Enterprise Server that allowed privilege escalation in the Mangement Console
9.1
First published (updated )
GitHub EnterpriseCommand injection vulnerability was identified in GitHub Enterprise Server that allowed privilege escalation in the Mangement Console
9.1
First published (updated )
GitHub EnterpriseCommand injection vulnerability was identified in GitHub Enterprise Server that allowed privilege escalation in the Mangement Console
9.1
First published (updated )
GitHub EnterpriseCommand injection vulnerability was identified in GitHub Enterprise Server that allowed privilege escalation in the Mangement Console
9.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
GitHub EnterpriseCommand injection vulnerability was identified in GitHub Enterprise Server that allowed privilege escalation in the Mangement Console
9.1
First published (updated )
GitHub EnterpriseUnsafe Reflection in Github Enterprise Server leading to Command Injection
9.8
EPSS
0.37%
First published (updated )
GitHub EnterpriseIncorrect authorization check in GitHub Enterprise Server leading to escalation of privileges in GraphQL API requests from GitHub Apps using scoped user-to-server tokens
9.8
First published (updated )
GitHubpurpleparrots 491-Project Highscore update.php sql injection
9.8
First published (updated )
GitHub EnterpriseImproper Limitation of a Pathname to a Restricted Directory in GitHub Enterprise Server leading to RCE
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
GitHub RunnerGitHub Actions Runner vulnerable to Docker Command Escaping
9.9
First published (updated )
cmark-gfmCommonMarker Integer Overflow Vulnerability
9.8
EPSS
0.42%
First published (updated )
FedoraInteger overflow in table parsing extension leads to heap memory corruption
9.8
First published (updated )
GitHub EnterpriseImproper access control in GitHub Enterprise Server allows self-hosted runners to execute outside their control group
9.8
First published (updated )
GitHub EnterpriseImproper access control in GitHub Enterprise Server leading to privilege escalation of organization member
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
GitHub EnterpriseThe Management Console in GitHub Enterprise 2.8.x before 2.8.7 has a deserialization issue that allo…
9.8
First published (updated )