3 matches found
CVE-2022-23732
A path traversal vulnerability was identified in GitHub Enterprise Server management console that allowed the bypass of CSRF protections. This could potentially lead to privilege escalation. To exploit this vulnerability, an attacker would need to target a user that was actively logged into the...
CVE-2022-23732
The CVE-2022-23732 entry concerns a path traversal vulnerability in the GitHub Enterprise Server management console that bypasses CSRF protections and could lead to privilege escalation. Affected software: GitHub Enterprise Server management console (all versions prior to 3.5). Root cause: path t...
GitHub: CSRF protection bypass in GitHub Enterprise management console
A path traversal vulnerability was identified in GitHub Enterprise Server management console that allowed the bypass of CSRF protections. This could potentially lead to privilege escalation. To exploit this vulnerability, an attacker would need to target a user that was actively logged into the...