cgit_clone_objects in CGit before 1.2.1 has a directory traversal vulnerability when enable-http-clone=1
is not turned off, as demonstrated by a cgit/cgit.cgi/git/objects/?path=…/ request.
CPE | Name | Operator | Version |
---|---|---|---|
cgit | eq | 0.9.0.3-r0 | |
cgit | eq | 0.9-r0 | |
cgit | eq | 0.9.1-r0 | |
cgit | eq | 0.8.3.1-r2 | |
cgit | eq | 0.9.0.1-r0 | |
cgit | eq | 0.8.3.3-r0 | |
cgit | eq | 0.10-r0 | |
cgit | eq | 1.0-r0 | |
cgit | eq | 0.10.2-r1 | |
cgit | eq | 0.9.2-r1 |