Filters

Software

github enterprise server
22
github cmark-gfm
7
github github
4
github actions toolkit
1
github actions\/artifact node.js
1
github github enterprise
1
github pull requests and issues
1
github viewcomponent
1

npm/@actions/artifactArbitrary File Write via artifact extraction in actions/artifact

high
7.5
First published (updated )
CVE-2024-42471

GitHub Enterprise ServerDenial of Service vulnerability was identified in GitHub Enterprise Server that allowed resource exhaustion

high
7.7
EPSS
0.04%
First published (updated )
CVE-2024-5795

GitHub Enterprise ServerCommand injection vulnerability was identified in GitHub Enterprise Server that allowed privilege escalation in the Mangement Console

high
8
First published (updated )
CVE-2024-1354

GitHub Enterprise ServerPrivilege Escalation by Code Injection in the Management Console in GitHub Enterprise Server

high
8.8
EPSS
0.06%
First published (updated )
CVE-2024-0507

GitHub Enterprise ServerImproper Authentication in GitHub Enterprise Server leading to Authentication Bypass for Public Repository Data

high
7.5
EPSS
0.06%
First published (updated )
CVE-2023-6847

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

GitHub Enterprise ServerInsufficient Entropy in GitHub Enterprise Server Management Console Invitation Token

high
8.3
First published (updated )
CVE-2023-46648

GitHub Enterprise ServerRace Condition allows Administrative Access on Organization Repositories

high
7
First published (updated )
CVE-2023-46649

GitHub Enterprise ServerSensitive Information in Log File in GitHub Enterprise Server

high
7.2
EPSS
0.06%
First published (updated )
CVE-2023-6802

GitHub Enterprise ServerSensitive Information in Log File in GitHub Enterprise Server

high
8.1
EPSS
0.09%
First published (updated )
CVE-2023-6746

GitHub Enterprise ServerImproper Privilege Management in GitHub Enterprise Server management console leads to privilege escalation

high
8.8
First published (updated )
CVE-2023-46647

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

GitHub Enterprise ServerIncorrect comparison vulnerability in GitHub Enterprise Server leading to commit smuggling

high
7.1
First published (updated )
CVE-2023-23764

Github Cmark-gfmQuadratic complexity bugs may lead to a denial of service

high
7.5
First published (updated )
CVE-2023-37463

Github Pull Requests And IssuesVisual Studio Code GitHub Pull Requests and Issues Extension Remote Code Execution Vulnerability

high
7.8
First published (updated )
CVE-2023-36867

GitHub Enterprise ServerImproper authentication vulnerability in GitHub Enterprise Server leading to modification of secret gists

high
7.7
First published (updated )
CVE-2023-23761

Github Cmark-gfmQuadratic complexity may lead to a denial of service in cmark-gfm

high
7.5
First published (updated )
CVE-2023-24824

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Github Cmark-gfmQuadratic complexity may lead to a denial of service in cmark-gfm

high
7.5
First published (updated )
CVE-2023-26485

GitHub Enterprise ServerPath traversal in GitHub Enterprise Server leading to remote code execution

high
8.8
First published (updated )
CVE-2023-23760

GitHub Enterprise ServerCode injection in GitHub Enterprise Server leading to arbitrary environment variables in GitHub Actions

high
8.8
First published (updated )
CVE-2023-22381

Github Cmark-gfmcmark-gfm Quadratic complexity bug in handle_close_bracket may lead to a denial of service

high
7.5
First published (updated )
CVE-2023-22486

Github Cmark-gfmInefficient Quadratic complexity bug in handle_pointy_brace may lead to a denial of service

high
7.5
First published (updated )
CVE-2023-22484

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Github Cmark-gfmcmark-gfm Quadratic complexity bugs may lead to a denial of service

high
7.5
First published (updated )
CVE-2023-22483

GitHub Enterprise ServerPath traversal in GitHub Enterprise Server leading to remote code execution in GitHub Pages

high
8.8
First published (updated )
CVE-2022-46256

GitHub Enterprise ServerIncorrect authorization in GitHub Enterprise Server token generation leading to full admin access

high
7.2
First published (updated )
CVE-2022-23741

GitHub Enterprise ServerImproper Neutralization of Argument Delimiters in a Command in GitHub Enterprise Server leading to Remote Code Execution

high
8.8
First published (updated )
CVE-2022-23740

GitHub Enterprise ServerDeserialization of Untrusted Data vulnerability in GitHub Enterprise Server leading to Remote Code Execution

high
8.8
First published (updated )
CVE-2022-23734

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Fedoraproject FedoraUncontrolled Resource Consumption in cmark-gfm

high
7.5
First published (updated )
CVE-2022-39209

GitHub Enterprise ServerPath traversal in GitHub Enterprise Server management console leading to a bypass of CSRF protections

high
8.8
First published (updated )
CVE-2022-23732

rubygems/view_componentCross-site Scripting in view_component

high
8.1
First published (updated )
CVE-2022-24722

GitHub Enterprise ServerImproper control flow in GitHub Enterprise Server hosted Pages leads to remote code execution

high
8.8
First published (updated )
CVE-2021-41599

GitHub Enterprise ServerUI misrepresentation of granted permissions in GitHub Enterprise Server leading to unauthorized access to user

high
8.8
First published (updated )
CVE-2021-41598

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

GitHub Enterprise ServerUI misrepresentation of granted permissions in GitHub Enterprise Server leading to unauthorized access to user resources

high
8.8
First published (updated )
CVE-2021-22866

GitHub Enterprise ServerUnsafe configuration options in GitHub Pages leading to remote code execution on GitHub Enterprise Server

high
8.8
First published (updated )
CVE-2021-22864

GitHub GitHubImproper access control in GitHub Enterprise Server leading to unauthorized changes to maintainer permissions on pull requests

high
8.1
First published (updated )
CVE-2021-22863

GitHub GitHubUnsafe configuration options in GitHub Pages leading to remote code execution on GitHub Enterprise Server

high
8.8
First published (updated )
CVE-2020-10519

GitHub GitHubUnsafe configuration options in GitHub Pages leading to remote code execution on GitHub Enterprise Server

high
8.8
First published (updated )
CVE-2020-10518

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Github Github EnterpriseGitHub Enterprise before 20120304 does not properly restrict the use of a hash to provide values for…

high
7.5
First published (updated )
CVE-2012-2055

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203