Lucene search

CVE-2023-22726

🗓️ 20 Jan 2023 22:10:15Reported by [email protected]Type

act project artifact server vulnerability fi

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 9
cvelist	CVE-2023-22726 Unrestricted file upload leading to privilege escalation in act	20 Jan 202321:02	–	cvelist
osv	GO-2023-1504 act vulnerable to arbitrary file upload in artifact server in github.com/nektos/act	20 Aug 202420:25	–	osv
osv	act vulnerable to arbitrary file upload in artifact server	20 Jan 202316:00	–	osv
osv	CVE-2023-22726	20 Jan 202322:15	–	osv
vulnrichment	CVE-2023-22726 Unrestricted file upload leading to privilege escalation in act	20 Jan 202321:02	–	vulnrichment
prion	Path traversal	20 Jan 202322:15	–	prion
cve	CVE-2023-22726	20 Jan 202322:15	–	cve
veracode	Privilege Escalation	26 Jan 202315:55	–	veracode
github	act vulnerable to arbitrary file upload in artifact server	20 Jan 202316:00	–	github

Nvd

Node

act_project actRange<0.2.40go

Source	Link
github	www.github.com/nektos/act/blob/v0.2.35/pkg/artifacts/server.go
github	www.github.com/nektos/act/blob/master/pkg/artifacts/server.go
github	www.github.com/nektos/act/blob/v0.2.35/pkg/artifacts/server.go
github	www.github.com/nektos/act/commit/63ae215071f94569d910964bdee866d91d6e3a10
github	www.github.com/nektos/act/issues/1553
github	www.github.com/nektos/act/security/advisories/GHSA-pc99-qmg4-rcff
securitylab	www.securitylab.github.com/advisories/GHSL-2023-004_act/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

20 Jan 2023 22:15Current

8High risk

Vulners AI Score8

CVSS38.8

EPSS0.02046