3 matches found
Gitblit 1.9.3 - Local File Inclusion
Gitblit 1.9.3 is vulnerable to local file inclusion via /resources//../ e.g., followed by a WEB-INF or META-INF pathname. id: CVE-2022-31268 info: name: Gitblit 1.9.3 - Local File Inclusion author: 0xAkoko severity: high description: | Gitblit 1.9.3 is vulnerable to local file inclusion via...
'/../WEB-INF/' Information Disclosure Vulnerability (HTTP)
Various application or web servers / products are prone to an information disclosure vulnerability. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...
CVE-2022-31268
CVE-2022-31268 affects Gitblit 1.9.3 via a path traversal / local file inclusion flaw exposed at the path /resources//../ (e.g., following by WEB-INF or META-INF). The incident enables reading website files on the server. Public sources in connected documents also describe risk of unauthorized fi...