Gitblit 1.9.3 - Local File Inclusion

Gitblit 1.9.3 is vulnerable to local file inclusion via /resources//../ e.g., followed by a WEB-INF or META-INF pathname. id: CVE-2022-31268 info: name: Gitblit 1.9.3 - Local File Inclusion author: 0xAkoko severity: high description: | Gitblit 1.9.3 is vulnerable to local file inclusion via...

PT-2026-30997

Another CVE CVE-2026-31268 has been assigned and is currently pending publication 🥰 https://t.co/2bfMaVHbE4...

CVE-2025-31268

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sonoma 14.8, macOS Sequoia 15.7. An app may be able to access protected user data...

CVE-2024-31268 WordPress AppPresser plugin <= 4.3.0 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in AppPresser Team AppPresser.This issue affects AppPresser: from n/a through 4.3.0...

CVE-2024-31268

CVE-2024-31268 is a CSRF vulnerability in AppPresser (WordPress plugin) affecting AppPresser up to version 4.3.0. The connected data confirms a CSRF path via the toggle_logging_callback, allowing an attacker to induce a user action on behalf of a logged-in user. The CVE description itself states ...

'/../WEB-INF/' Information Disclosure Vulnerability (HTTP)

Various application or web servers / products are prone to an information disclosure vulnerability. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

CVE-2022-31268

CVE-2022-31268 affects Gitblit 1.9.3 via a path traversal / local file inclusion flaw exposed at the path /resources//../ (e.g., following by WEB-INF or META-INF). The incident enables reading website files on the server. Public sources in connected documents also describe risk of unauthorized fi...