Lucene search
K

15 matches found

Nuclei
Nuclei
added 20 hours ago104 views

cgit < 1.2.1 - Directory Traversal

cGit 1.2.1 via cgitcloneobjects has a directory traversal vulnerability when enable-http-clone=1 is not turned off, as demonstrated by a cgit/cgit.cgi/git/objects/?path=../ request. id: CVE-2018-14912 info: name: cgit 1.2.1 - Directory Traversal author: 0xAkoko severity: high description: cGit...

7.5CVSS7.1AI score0.93188EPSS
Exploits7References5
VulnCheck KEV
VulnCheck KEV
added 2023/11/26 12:0 a.m.3 views

VulnCheck KEV: CVE-2018-14912

cgitcloneobjects in CGit before 1.2.1 has a directory traversal vulnerability when enable-http-clone=1 is not turned off, as demonstrated by a cgit/cgit.cgi/git/objects/?path=../ request...

7.5CVSS7.1AI score0.93188EPSS
Exploits7References1
Tenable Nessus
Tenable Nessus
added 2019/03/27 12:0 a.m.26 views

openSUSE Security Update : cgit (openSUSE-2019-595)

This update for cgit fixes the following issues : The following security vulnerability was addressed : - CVE-2018-14912: Fixed a directory traversal vulnerability, when enable-http-clone=1 is not turned off boo1103799 The following other changes were made : - Update to upstream release 1.2.1 -...

7.5CVSS7.1AI score0.93188EPSS
Exploits7References2
Tenable Nessus
Tenable Nessus
added 2018/08/15 12:0 a.m.28 views

openSUSE Security Update : cgit (openSUSE-2018-864)

This update for cgit to version 1.2.1 fixes the following issues : The following security vulnerability was addressed : - CVE-2018-14912: Fixed a directory traversal vulnerability, when enable-http-clone=1 is not turned off boo1103799 The following other changes were made : - Update to upstream...

7.5CVSS7.1AI score0.93188EPSS
Exploits7References2
Tenable Nessus
Tenable Nessus
added 2018/08/14 12:0 a.m.22 views

openSUSE Security Update : cgit (openSUSE-2018-863)

This update for cgit fixes the following issues : The following security vulnerability was addressed : - CVE-2018-14912: Fixed a directory traversal vulnerability, when enable-http-clone=1 is not turned off boo1103799 The following other changes were made : - Update to upstream release 1.2.1 -...

7.5CVSS7.1AI score0.93188EPSS
Exploits7References2
exploitpack
exploitpack
added 2018/08/14 12:0 a.m.28 views

cgit 1.2.1 - Directory Traversal (Metasploit)

cgit 1.2.1 - Directory Traversal Metasploit Title: cgit 1.2.1 - Directory Traversal Metasploit Author: Dhiraj Mishra Software: cgit Link: https://git.zx2c4.com/cgit/ Date: 2018-08-14 CVE: CVE-2018-14912 This module exploits a directory traversal vulnerability which exists in cgit 'cgit Directory...

5CVSS0.2AI score0.93188EPSS
Exploits7
Exploit DB
Exploit DB
added 2018/08/14 12:0 a.m.43 views

cgit 1.2.1 - Directory Traversal (Metasploit)

Title: cgit 1.2.1 - Directory Traversal Metasploit Author: Dhiraj Mishra Software: cgit Link: https://git.zx2c4.com/cgit/ Date: 2018-08-14 CVE: CVE-2018-14912 This module exploits a directory traversal vulnerability which exists in cgit 'cgit Directory Traversal', 'Description' = %q This module...

7.5CVSS7.5AI score0.93188EPSS
Exploits7
0day.today
0day.today
added 2018/08/14 12:0 a.m.52 views

cgit 1.2.1 - Directory Traversal Exploit

Exploit for linux platform in category local exploits Title: cgit 1.2.1 - Directory Traversal Metasploit Author: Dhiraj Mishra Software: cgit Link: https://git.zx2c4.com/cgit/ CVE: CVE-2018-14912 This module exploits a directory traversal vulnerability which exists in cgit 'cgit Directory...

0.1AI score0.93188EPSS
Exploits7
Circl
Circl
added 2018/08/13 9:33 p.m.200 views

CVE-2018-14912

creationtimestamp| type| source ---|---|--- 2018-08-13 21:33:11+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/cgittraversal.rb 2018-08-14 16:56:14+00:00| published-proof-of-concept| https://t.me/VulnerabilityNews/707 2024-12-23...

7.5CVSS7.1AI score0.93188EPSS
In wildExploits7References5
OPENSUSE Linux
OPENSUSE Linux
added 2018/08/13 6:9 p.m.81 views

Security update for cgit (moderate)

This update for cgit to version 1.2.1 fixes the following issues: The following security vulnerability was addressed: - CVE-2018-14912: Fixed a directory traversal vulnerability, when enable-http-clone=1 is not turned off boo1103799 The following other changes were made: - Update to upstream...

1.9AI score0.93188EPSS
Exploits7References1
OPENSUSE Linux
OPENSUSE Linux
added 2018/08/13 3:7 p.m.71 views

Security update for cgit (moderate)

This update for cgit fixes the following issues: The following security vulnerability was addressed: - CVE-2018-14912: Fixed a directory traversal vulnerability, when enable-http-clone=1 is not turned off boo1103799 The following other changes were made: - Update to upstream release 1.2.1...

2.9AI score0.93188EPSS
Exploits7References1
Packet Storm
Packet Storm
added 2018/08/06 12:0 a.m.44 views

cgit cgit_clone_objects() Directory Traversal

cgit: directory traversal in cgitcloneobjects CVE-2018-14912 There is a directory traversal vulnerability in cgitcloneobjects, reachable when the configuration flag enable-http-clone is set to 1 default: void cgitcloneobjectsvoid if !ctx.qry.path cgitprinterrorpage400, "Bad request", "Bad request...

0.3AI score0.93188EPSS
Exploits7
Debian
Debian
added 2018/08/04 12:5 p.m.70 views

[SECURITY] [DSA 4263-1] cgit security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4263-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso August 04, 2018 https://www.debian.org/security/faq -...

7.5CVSS7.5AI score0.93188EPSS
Exploits7
Debian
Debian
added 2018/08/04 12:5 p.m.65 views

[SECURITY] [DSA 4263-1] cgit security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4263-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso August 04, 2018 https://www.debian.org/security/faq -...

5CVSS2.2AI score0.93188EPSS
Exploits7
CVE
CVE
added 2018/08/03 7:0 p.m.130 views

CVE-2018-14912

CVE-2018-14912 affects CGit prior to 1.2.1. The vulnerability is a directory traversal in cgit_clone_objects() that can be triggered when enable-http-clone is not disabled, allowing a remote attacker to retrieve arbitrary files via requests like cgit/cgit.cgi/git/objects/?path=../. Multiple advis...

7.5CVSS7.3AI score0.93188EPSS
In wildExploits7References5Affected Software1
Rows per page
Query Builder