Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

OSV
OSVadded 2024/11/19 7:15 p.m.2 views

CVE-2024-21697

This High severity RCE Remote Code Execution vulnerability was introduced in versions 4.2.8 of Sourcetree for Mac and 3.4.19 for Sourcetree for Windows. This RCE Remote Code Execution vulnerability, with a CVSS Score of 8.8, allows an unauthenticated attacker to execute arbitrary code which has...

8.8CVSS6.1AI score
Exploits0References2
OSV
OSVadded 2024/01/16 6:15 p.m.5 views

CVE-2023-22514

This High severity RCE Remote Code Execution vulnerability was introduced in version 3.4.14 of Sourcetree for Mac and Sourcetree for Windows. This RCE Remote Code Execution vulnerability, with a CVSS Score of 7.8, and a CVSS Vector of: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H which allows an...

7.8CVSS6.1AI score
Exploits0References2
OSV
OSVadded 2019/03/08 6:29 p.m.2 views

CVE-2018-20235

There was an argument injection vulnerability in Atlassian Sourcetree for Windows from version 0.5a before version 3.0.15 via filenames in Mercurial repositories. A remote attacker with permission to commit to a Mercurial repository linked in Sourcetree for Windows is able to exploit this issue t...

8.8CVSS6.2AI score
Exploits0References4
CNVD
CNVDadded 2018/11/06 12:0 a.m.2 views

Sourcetree for Windows Parameter Injection Vulnerability (CNVD-2019-09133)

Sourcetree is a free Mercurial and Git client for Windows and Mac. Sourcetree for Windows suffers from a parameter injection vulnerability that can be exploited by an attacker to execute code on a system via a Git subrepository in a Mercurial repository...

9CVSS8.9AI score0.02112EPSS
Exploits1References1
NVD
NVDadded 2018/11/05 10:29 p.m.12 views

CVE-2018-13397

There was an argument injection vulnerability in Sourcetree for Windows from version 0.5.1.0 before version 3.0.0 via Git subrepositories in Mercurial repositories. An attacker with permission to commit to a Mercurial repository linked in Sourcetree for Windows is able to exploit this issue to ga...

9CVSS9AI score0.02112EPSS
Exploits1References1
OSV
OSVadded 2018/07/24 1:29 p.m.1 views

CVE-2018-13386

There was an argument injection vulnerability in Sourcetree for Windows via filenames in Mercurial repositories. An attacker with permission to commit to a Mercurial repository linked in Sourcetree for Windows is able to exploit this issue to gain code execution on the system. Versions of...

8.1CVSS6.2AI score0.01591EPSS
Exploits1References1
OSV
OSVadded 2018/04/25 9:29 p.m.4 views

CVE-2018-5226

There was an argument injection vulnerability in Sourcetree for Windows via Mercurial repository tag name that is going to be deleted. An attacker with permission to create a tag on a Mercurial repository linked in Sourcetree for Windows is able to exploit this issue to gain code execution on the...

8.8CVSS6.1AI score0.01463EPSS
Exploits0References1
CNVD
CNVDadded 2018/01/30 12:0 a.m.2 views

Atlassian Sourcetree for Windows Command Injection Vulnerability

Atlassian Sourcetree for Windows is a free Windows-based Git and Mercurial client tool from the Australian company Atlassian that manages repositories using a visual interface. A security vulnerability exists in Atlassian Sourcetree for Windows versions 0.5.1.0 through 2.4.7.0 excluding version...

9CVSS7AI score0.05516EPSS
Exploits0References1
Rows per page
Query Builder