Filters
Software
go/github.com/cli/cliConnecting to a malicious Codespaces via GH CLI could allow command execution on the user's computer
9.6
First published (updated )
GitHub Enterprise ServerAn Improper Verification of Cryptographic Signature vulnerability was identified in GitHub Enterprise Server that allowed SAML SSO authentication to be bypassed when the encrypted assertions feature was enabled
9.5
EPSS
0.83%
First published (updated )
GitHub Enterprise ServerAn XML signature wrapping vulnerability was present in GitHub Enterprise Server (GHES) when using SA…
9.8
EPSS
0.04%
First published (updated )
GitHub Enterprise ServerCommand injection vulnerability was identified in GitHub Enterprise Server that allowed privilege escalation in the Mangement Console
9.1
First published (updated )
GitHub Enterprise ServerCommand injection vulnerability was identified in GitHub Enterprise Server that allowed privilege escalation in the Mangement Console
9.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
GitHub Enterprise ServerCommand injection vulnerability was identified in GitHub Enterprise Server that allowed privilege escalation in the Mangement Console
9.1
First published (updated )
GitHub Enterprise ServerCommand injection vulnerability was identified in GitHub Enterprise Server that allowed privilege escalation in the Mangement Console
9.1
First published (updated )
GitHub Enterprise ServerCommand injection vulnerability was identified in GitHub Enterprise Server that allowed privilege escalation in the Mangement Console
9.1
First published (updated )
GitHub Enterprise ServerCommand injection vulnerability was identified in GitHub Enterprise Server that allowed privilege escalation in the Mangement Console
9.1
First published (updated )
GitHub Enterprise ServerUnsafe Reflection in Github Enterprise Server leading to Command Injection
9.8
EPSS
0.37%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
GitHub Enterprise ServerIncorrect authorization check in GitHub Enterprise Server leading to escalation of privileges in GraphQL API requests from GitHub Apps using scoped user-to-server tokens
9.8
First published (updated )
Github 491-projectpurpleparrots 491-Project Highscore update.php sql injection
9.8
First published (updated )
GitHub Enterprise ServerImproper Limitation of a Pathname to a Restricted Directory in GitHub Enterprise Server leading to RCE
9.8
First published (updated )
Github RunnerGitHub Actions Runner vulnerable to Docker Command Escaping
9.9
First published (updated )
Github Cmark-gfmCommonMarker Integer Overflow Vulnerability
9.8
EPSS
0.42%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Fedoraproject FedoraInteger overflow in table parsing extension leads to heap memory corruption
9.8
First published (updated )
GitHub Enterprise ServerImproper access control in GitHub Enterprise Server allows self-hosted runners to execute outside their control group
9.8
First published (updated )
GitHub GitHubImproper access control in GitHub Enterprise Server leading to privilege escalation of organization member
9.8
First published (updated )
GitHub GitHubThe Management Console in GitHub Enterprise 2.8.x before 2.8.7 has a deserialization issue that allo…
9.8
First published (updated )