15 matches found
cgit < 1.2.1 - Directory Traversal
cGit 1.2.1 via cgitcloneobjects has a directory traversal vulnerability when enable-http-clone=1 is not turned off, as demonstrated by a cgit/cgit.cgi/git/objects/?path=../ request. id: CVE-2018-14912 info: name: cgit 1.2.1 - Directory Traversal author: 0xAkoko severity: high description: cGit...
VulnCheck KEV: CVE-2018-14912
cgitcloneobjects in CGit before 1.2.1 has a directory traversal vulnerability when enable-http-clone=1 is not turned off, as demonstrated by a cgit/cgit.cgi/git/objects/?path=../ request...
openSUSE Security Update : cgit (openSUSE-2019-595)
This update for cgit fixes the following issues : The following security vulnerability was addressed : - CVE-2018-14912: Fixed a directory traversal vulnerability, when enable-http-clone=1 is not turned off boo1103799 The following other changes were made : - Update to upstream release 1.2.1 -...
openSUSE Security Update : cgit (openSUSE-2018-864)
This update for cgit to version 1.2.1 fixes the following issues : The following security vulnerability was addressed : - CVE-2018-14912: Fixed a directory traversal vulnerability, when enable-http-clone=1 is not turned off boo1103799 The following other changes were made : - Update to upstream...
openSUSE Security Update : cgit (openSUSE-2018-863)
This update for cgit fixes the following issues : The following security vulnerability was addressed : - CVE-2018-14912: Fixed a directory traversal vulnerability, when enable-http-clone=1 is not turned off boo1103799 The following other changes were made : - Update to upstream release 1.2.1 -...
cgit 1.2.1 - Directory Traversal (Metasploit)
cgit 1.2.1 - Directory Traversal Metasploit Title: cgit 1.2.1 - Directory Traversal Metasploit Author: Dhiraj Mishra Software: cgit Link: https://git.zx2c4.com/cgit/ Date: 2018-08-14 CVE: CVE-2018-14912 This module exploits a directory traversal vulnerability which exists in cgit 'cgit Directory...
cgit 1.2.1 - Directory Traversal (Metasploit)
Title: cgit 1.2.1 - Directory Traversal Metasploit Author: Dhiraj Mishra Software: cgit Link: https://git.zx2c4.com/cgit/ Date: 2018-08-14 CVE: CVE-2018-14912 This module exploits a directory traversal vulnerability which exists in cgit 'cgit Directory Traversal', 'Description' = %q This module...
cgit 1.2.1 - Directory Traversal Exploit
Exploit for linux platform in category local exploits Title: cgit 1.2.1 - Directory Traversal Metasploit Author: Dhiraj Mishra Software: cgit Link: https://git.zx2c4.com/cgit/ CVE: CVE-2018-14912 This module exploits a directory traversal vulnerability which exists in cgit 'cgit Directory...
CVE-2018-14912
creationtimestamp| type| source ---|---|--- 2018-08-13 21:33:11+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/cgittraversal.rb 2018-08-14 16:56:14+00:00| published-proof-of-concept| https://t.me/VulnerabilityNews/707 2024-12-23...
Security update for cgit (moderate)
This update for cgit to version 1.2.1 fixes the following issues: The following security vulnerability was addressed: - CVE-2018-14912: Fixed a directory traversal vulnerability, when enable-http-clone=1 is not turned off boo1103799 The following other changes were made: - Update to upstream...
Security update for cgit (moderate)
This update for cgit fixes the following issues: The following security vulnerability was addressed: - CVE-2018-14912: Fixed a directory traversal vulnerability, when enable-http-clone=1 is not turned off boo1103799 The following other changes were made: - Update to upstream release 1.2.1...
cgit cgit_clone_objects() Directory Traversal
cgit: directory traversal in cgitcloneobjects CVE-2018-14912 There is a directory traversal vulnerability in cgitcloneobjects, reachable when the configuration flag enable-http-clone is set to 1 default: void cgitcloneobjectsvoid if !ctx.qry.path cgitprinterrorpage400, "Bad request", "Bad request...
[SECURITY] [DSA 4263-1] cgit security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4263-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso August 04, 2018 https://www.debian.org/security/faq -...
[SECURITY] [DSA 4263-1] cgit security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4263-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso August 04, 2018 https://www.debian.org/security/faq -...
CVE-2018-14912
CVE-2018-14912 affects CGit prior to 1.2.1. The vulnerability is a directory traversal in cgit_clone_objects() that can be triggered when enable-http-clone is not disabled, allowing a remote attacker to retrieve arbitrary files via requests like cgit/cgit.cgi/git/objects/?path=../. Multiple advis...