Filter
-Infinity
0
Trending
cmark-gfmcmark-gfm Quadratic complexity bugs may lead to a denial of service
7.5
First published (updated )
cmark-gfmInefficient Quadratic complexity bug in handle_pointy_brace may lead to a denial of service
7.5
First published (updated )
cmark-gfmcmark-gfm out-of-bounds read in validate_protocol
5.3
First published (updated )
cmark-gfmcmark-gfm Quadratic complexity bug in handle_close_bracket may lead to a denial of service
7.5
First published (updated )
GitHub EnterpriseInformation disclosure in GitHub Enterprise Server leading to unauthorized viewing of private repository names
4.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
GitHub EnterpriseCode injection in GitHub Enterprise Server leading to arbitrary environment variables in GitHub Actions
8.8
First published (updated )
GitHub`gh attestation verify` returns incorrect exit code during verification if no attestations are present
6.3
EPSS
0.04%
First published (updated )
GitHub EnterprisePath traversal in GitHub Enterprise Server leading to remote code execution
8.8
First published (updated )
GitHub LivemarksGitHub Security Lab (GHSL) Vulnerability Report, livemarks: `GHSL-2024-015`
2.6
EPSS
0.04%
First published (updated )
CodeQLCodeQL GitHub Action failed workflow writes GitHub PAT to debug artifacts
7.1
EPSS
0.04%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
GitHub EnterpriseImproper Verification of Cryptographic Signature in GitHub Enterprise Server Allows Signature Spoofing by Improper Validation
7.6
EPSS
0.04%
First published (updated )
GitHub EnterpriseCode Injection Vulnerability in GitHub Enterprise Server Allows Arbitrary Code Execution via Message Handling
7.1
First published (updated )
cmark-gfmQuadratic complexity may lead to a denial of service in cmark-gfm
7.5
First published (updated )
cmark-gfmQuadratic complexity may lead to a denial of service in cmark-gfm
7.5
First published (updated )
GitHub EnterpriseIncorrect comparison vulnerability in GitHub Enterprise Server leading to commit smuggling
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
GitHub EnterpriseImproper authentication vulnerability in GitHub Enterprise Server leading to modification of secret gists
7.7
First published (updated )
CodeQLLimited data exfiltration in CodeQL CLI
5.5
EPSS
0.05%
First published (updated )
Dark ReadingNew Jailbreaks Allow Users to Manipulate GitHub Copilot
First published (updated )
News
Dark ReadingBleepingComputerClone2Leak attacks exploit Git flaws to steal credentials
First published (updated )
News
BleepingComputerGitHub ActionsArbitrary File Write via artifact extraction in actions/artifact
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
GitHub EnterpriseImproper Authorization in GitHub Enterprise Server allowed unauthorized workflow execution
7.1
First published (updated )
GitHub DesktopMaliciously crafted remote URLs could lead to credential leak in GitHub Desktop
6.6
EPSS
0.04%
First published (updated )
GitHub Pull Requests and IssuesVisual Studio Code GitHub Pull Requests and Issues Extension Remote Code Execution Vulnerability
7.8
First published (updated )
GitHub EnterpriseSensitive Information in Log File in GitHub Enterprise Server
8.1
EPSS
0.09%
First published (updated )
GitHub EnterpriseImproper access control in all versions of GitHub Enterprise Server allows unauthorized users to vie…
5.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
GitHub EnterpriseIncorrect Authorization allows Read Access to Issue Comments in GitHub Enterprise Server
4.3
First published (updated )
GitHub EnterpriseIncorrect Authorization for Issue Comments in GitHub Enterprise Server
4.9
First published (updated )
GitHub EnterpriseImproper Privilege Management allows for arbitrary workflows to be run
6.5
EPSS
0.04%
First published (updated )
GitHub EnterpriseAn authentication bypass vulnerability was present in the GitHub Enterprise Server (GHES) when utili…
10
EPSS
0.04%
First published (updated )
GitHub EnterpriseImproper Privilege Management was identified in GitHub Enterprise Server that allowed privilege escalation in the Management Console
8
EPSS
0.04%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.