3 matches found
CVE-2025-22130
Soft Serve is a self-hostable Git server for the command line. Prior to 0.8.2 , a path traversal attack allows existing non-admin users to access and take over other user's repositories. A malicious user then can modify, delete, and arbitrarily repositories as if they were an admin user without...
CVE-2025-22130
creationtimestamp| type| source ---|---|--- 2025-01-08 15:46:09+00:00| seen| https://infosec.exchange/users/cve/statuses/113793510200311392 2025-01-08 16:16:18+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfakrb4vc52i 2025-01-08 16:43:05+00:00| seen|...
CVE-2025-22130
CVE-2025-22130 affects the Soft Serve Git server. Prior to version 0.8.2, a path traversal vulnerability lets existing non-admin users access and take over other users’ repositories, enabling modification, deletion, and arbitrary admin-like actions on repositories without explicit permissions. Th...