Filters

npm/@actions/artifactArbitrary File Write via artifact extraction in actions/artifact

7.5
First published (updated )

GitHub Enterprise ServerDenial of Service vulnerability was identified in GitHub Enterprise Server that allowed resource exhaustion

7.7
EPSS
0.04%
First published (updated )

GitHub Enterprise ServerCommand injection vulnerability was identified in GitHub Enterprise Server that allowed privilege escalation in the Mangement Console

First published (updated )

GitHub Enterprise ServerPrivilege Escalation by Code Injection in the Management Console in GitHub Enterprise Server

8.8
EPSS
0.06%
First published (updated )

GitHub Enterprise ServerImproper Authentication in GitHub Enterprise Server leading to Authentication Bypass for Public Repository Data

7.5
EPSS
0.06%
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

GitHub Enterprise ServerInsufficient Entropy in GitHub Enterprise Server Management Console Invitation Token

8.3
First published (updated )

GitHub Enterprise ServerRace Condition allows Administrative Access on Organization Repositories

First published (updated )

GitHub Enterprise ServerSensitive Information in Log File in GitHub Enterprise Server

7.2
EPSS
0.06%
First published (updated )

GitHub Enterprise ServerSensitive Information in Log File in GitHub Enterprise Server

8.1
EPSS
0.09%
First published (updated )

GitHub Enterprise ServerImproper Privilege Management in GitHub Enterprise Server management console leads to privilege escalation

8.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

GitHub Enterprise ServerIncorrect comparison vulnerability in GitHub Enterprise Server leading to commit smuggling

7.1
First published (updated )

Github Cmark-gfmQuadratic complexity bugs may lead to a denial of service

7.5
First published (updated )

Github Pull Requests And IssuesVisual Studio Code GitHub Pull Requests and Issues Extension Remote Code Execution Vulnerability

7.8
First published (updated )

GitHub Enterprise ServerImproper authentication vulnerability in GitHub Enterprise Server leading to modification of secret gists

7.7
First published (updated )

Github Cmark-gfmQuadratic complexity may lead to a denial of service in cmark-gfm

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Github Cmark-gfmQuadratic complexity may lead to a denial of service in cmark-gfm

7.5
First published (updated )

GitHub Enterprise ServerPath traversal in GitHub Enterprise Server leading to remote code execution

8.8
First published (updated )

GitHub Enterprise ServerCode injection in GitHub Enterprise Server leading to arbitrary environment variables in GitHub Actions

8.8
First published (updated )

Github Cmark-gfmcmark-gfm Quadratic complexity bug in handle_close_bracket may lead to a denial of service

7.5
First published (updated )

Github Cmark-gfmInefficient Quadratic complexity bug in handle_pointy_brace may lead to a denial of service

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Github Cmark-gfmcmark-gfm Quadratic complexity bugs may lead to a denial of service

7.5
First published (updated )

GitHub Enterprise ServerPath traversal in GitHub Enterprise Server leading to remote code execution in GitHub Pages

8.8
First published (updated )

GitHub Enterprise ServerIncorrect authorization in GitHub Enterprise Server token generation leading to full admin access

7.2
First published (updated )

GitHub Enterprise ServerImproper Neutralization of Argument Delimiters in a Command in GitHub Enterprise Server leading to Remote Code Execution

8.8
First published (updated )

GitHub Enterprise ServerDeserialization of Untrusted Data vulnerability in GitHub Enterprise Server leading to Remote Code Execution

8.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Fedoraproject FedoraUncontrolled Resource Consumption in cmark-gfm

7.5
First published (updated )

GitHub Enterprise ServerPath traversal in GitHub Enterprise Server management console leading to a bypass of CSRF protections

8.8
First published (updated )

rubygems/view_componentCross-site Scripting in view_component

8.1
First published (updated )

GitHub Enterprise ServerImproper control flow in GitHub Enterprise Server hosted Pages leads to remote code execution

8.8
First published (updated )

GitHub Enterprise ServerUI misrepresentation of granted permissions in GitHub Enterprise Server leading to unauthorized access to user

8.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

GitHub Enterprise ServerUI misrepresentation of granted permissions in GitHub Enterprise Server leading to unauthorized access to user resources

8.8
First published (updated )

GitHub Enterprise ServerUnsafe configuration options in GitHub Pages leading to remote code execution on GitHub Enterprise Server

8.8
First published (updated )

GitHub GitHubImproper access control in GitHub Enterprise Server leading to unauthorized changes to maintainer permissions on pull requests

8.1
First published (updated )

GitHub GitHubUnsafe configuration options in GitHub Pages leading to remote code execution on GitHub Enterprise Server

8.8
First published (updated )

GitHub GitHubUnsafe configuration options in GitHub Pages leading to remote code execution on GitHub Enterprise Server

8.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Github Github EnterpriseGitHub Enterprise before 20120304 does not properly restrict the use of a hash to provide values for…

7.5
First published (updated )

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203