5 matches found
Exploit for Unsafe Reflection in Github Enterprise_Server
Intro This repository contains exploits we have developed for...
GitHub Rotates Keys After High-Severity Vulnerability Exposes Credentials
GitHub has revealed that it has rotated some keys in response to a security vulnerability that could be potentially exploited to gain access to credentials within a production container. The Microsoft-owned subsidiary said it was made aware of the problem on December 26, 2023, and that it address...
CVE-2024-0507 Privilege Escalation by Code Injection in the Management Console in GitHub Enterprise Server
An attacker with access to a Management Console user account with the editor role could escalate privileges through a command injection vulnerability in the Management Console. This vulnerability affected all versions of GitHub Enterprise Server and was fixed in versions 3.11.3, 3.10.5, 3.9.8, an...
CVE-2024-0507
GitHub Enterprise Server CVE-2024-0507 is a privilege-escalation via command injection in the Management Console. An attacker with a Management Console editor role can escalate privileges by exploiting input handling in the console. Affected versions include all GHES releases prior to fixes; reme...
CVE-2024-0507 Privilege Escalation by Code Injection in the Management Console in GitHub Enterprise Server
An attacker with access to a Management Console user account with the editor role could escalate privileges through a command injection vulnerability in the Management Console. This vulnerability affected all versions of GitHub Enterprise Server and was fixed in versions 3.11.3, 3.10.5, 3.9.8, an...