99 matches found
Access Control Bypass
Overview Affected versions of this package are vulnerable to Access Control Bypass via the CODEOWNERS pattern matching process. An attacker can cause excessive resource consumption by submitting specially crafted patterns, potentially leading to service unavailability. Remediation Upgrade...
Access Control Bypass
Overview Affected versions of this package are vulnerable to Access Control Bypass via the CODEOWNERS pattern matching process. An attacker can cause excessive resource consumption by submitting specially crafted patterns, potentially leading to service unavailability. Remediation Upgrade...
CVE-2026-58421
Unauthenticated ReDoS via CODEOWNERS pattern matching allows denial of service...
CVE-2026-58421
CVE-2026-58421 affects Go-Gitea components (CODEOWNERS pattern matching) and is reported as an unauthenticated ReDoS that can cause denial of service through specially crafted patterns. The SNYK entries cite vulnerable paths in go-gitea/gitea: the issues model and issues/services with a suggested...
CVE-2026-58421 Unauthenticated ReDoS via CODEOWNERS pattern matching allows denial of service
Unauthenticated ReDoS via CODEOWNERS pattern matching allows denial of service...
CVE-2026-58421
Unauthenticated ReDoS via CODEOWNERS pattern matching allows denial of service...
CVE-2026-58421 Unauthenticated ReDoS via CODEOWNERS pattern matching allows denial of service
Unauthenticated ReDoS via CODEOWNERS pattern matching allows denial of service...
PT-2026-55654
Name of the Vulnerable Software and Affected Versions The product name cannot be determined affected versions not specified Description An unauthenticated Regular Expression Denial of Service ReDoS exists due to improper pattern matching within the CODEOWNERS file processing. This allows a remote...
CVE-2023-4812
An issue has been discovered in GitLab EE affecting all versions starting from 15.3 before 16.5.6, all versions starting from 16.6 before 16.6.4, all versions starting from 16.7 before 16.7.2. The required CODEOWNERS approval could be bypassed by adding changes to a previously approved merge...
EUVD-2021-26265
Malware in sbrugna...
EUVD-2020-5608
Malware in sbrugna...
EUVD-2023-58949
Malicious code in bioql PyPI...
EUVD-2023-54656
Malicious code in bioql PyPI...
EUVD-2024-16205
Malicious code in bioql PyPI...
EUVD-2023-34054
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2023-6736
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue has been discovered in GitLab EE affecting all versions starting from 11.3 before 16.7.6, all versions starting from 16.8 before 16.8.3, all versions...
Linux Distros Unpatched Vulnerability : CVE-2023-2576
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.7 before 15.11.10, all versions starting from 16.0 before 16.0.6, all...
Linux Distros Unpatched Vulnerability : CVE-2024-0199
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An authorization bypass vulnerability was discovered in GitLab affecting versions 11.3 prior to 16.7.7, 16.7.6 prior to 16.8.4, and 16.8.3 prior to 16.9.2. An...
CVE-2023-6736
An issue has been discovered in GitLab EE affecting all versions starting from 11.3 before 16.7.6, all versions starting from 16.8 before 16.8.3, all versions starting from 16.9 before 16.9.1. It was possible for an attacker to cause a client-side denial of service using malicious crafted content...
CVE-2023-2576
An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.7 before 15.11.10, all versions starting from 16.0 before 16.0.6, all versions starting from 16.1 before 16.1.1. This allowed a developer to remove the CODEOWNERS rules and merge to a protected branch...