Untrusted Search Path

Overview openclaw is a 🦞 OpenClaw — Personal AI Assistant Affected versions of this package are vulnerable to Untrusted Search Path in the installation of local plugins or hooks, specifically when executing npm install --omit=dev --silent --ignore-scripts within a staged directory that may contai...

CVE-2026-33748

CVE-2026-33748 (BuildKit) : Prior to BuildKit 0.28.1, there was insufficient validation of Git URL fragment subdir components, which could allow access to files outside the checked-out Git repository root (limited to files on the same mounted filesystem). Red Hat advisories for OpenShift Service ...

CVE-2023-28627

pymedusa is an automatic video library manager for TV Shows. In versions prior 1.0.12 an attacker with access to the web interface can update the git executable path in /config/general/ advanced settings with arbitrary OS commands. An attacker may exploit this vulnerability to take execute...

GHSA-V26R-4C9C-H3J6 gix-path uses local config across repos when it is the highest scope

Summary gix-path executes git to find the path of a configuration file that belongs to the git installation itself, but mistakenly treats the local repository's configuration as system-wide if no higher scoped configuration is found. In rare cases, this causes a less trusted repository to be...

go-git path traversal vulnerability

go-git is go-git open source a pure Go written in a highly scalable git implementation of the library . A path traversal vulnerability exists in versions prior to go-git v5.11 that allows an attacker to create and modify files across file systems...

pyMedusa 操作系统命令注入漏洞

pyMedusa is pyMedusa open source automated video library manager for a TV program. An operating system command injection vulnerability exists in versions prior to pymedusa 1.0.12. An attacker can exploit this vulnerability to update the git executable path in /config/general/advanced settings usi...

PT-2023-21858 · Pymedusa · Pymedusa

Name of the Vulnerable Software and Affected Versions: pymedusa versions prior to 1.0.12 Description: pymedusa is an automatic video library manager for TV Shows. An attacker with access to the web interface can update the git executable path in /config/general/ advanced settings with arbitrary O...

cargo-generate (>=0.15.0 <=0.16.0), cargo-temp (>=0.2.11 <=0.2.13) +30 more potentially affected by unknown CVE via git-path (>=0.1.3 <=0.4.2)

git-path CARGO version =0.1.3, =0.15.0, =0.2.11, =11.0.0, =0.1.0, =0.3.0, =0.1.0, =0.1.0, =0.29.0, =0.19.0, =0.16.0, =0.13.0, =0.17.0, =0.1.2, =0.7.0, =0.8.0 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2023-0026...

SUSE CVE-2014-9706

The buildindexfromtree function in index.py in Dulwich before 0.9.9 allows remote attackers to execute arbitrary code via a commit with a directory path starting with .git/, which is not properly handled when checking out a working tree...

DEBIAN-CVE-2023-23946

Git, a revision control system, is vulnerable to path traversal prior to versions 2.39.2, 2.38.4, 2.37.6, 2.36.5, 2.35.7, 2.34.7, 2.33.7, 2.32.6, 2.31.7, and 2.30.8. By feeding a crafted input to git apply, a path outside the working tree can be overwritten as the user who is running git apply. A...

Gitea Security Vulnerabilities

Gitea is a lightweight Go-based git service developed by the Gitea community. A security vulnerability exists in Gitea versions 0.9.99 through 1.12.x series prior to 1.12.6, which stems from will not prevent the git protocol path from specifying a TCP port number and also contains line breaks wit...

ZenTao Pro 8.8.2 - Command Injection Exploit

Exploit for php platform in category web applications Exploit Title: ZenTao Pro 8.8.2 - Command Injection Exploit Author: Daniel Monzón & Melvin Boers Vendor Homepage: https://www.zentao.pm/ Version: 8.8.2 Tested on: Windows 10 / WampServer Other versions like pro or enterprise edition could be...

UBUNTU-CVE-2018-11233

In Git before 2.13.7, 2.14.x before 2.14.4, 2.15.x before 2.15.2, 2.16.x before 2.16.4, and 2.17.x before 2.17.1, code to sanity-check pathnames on NTFS can result in reading out-of-bounds memory...

git: path_name() integer truncation and overflow leading to buffer overflow

An integer truncation flaw and an integer overflow flaw, both leading to a heap-based buffer overflow, were found in the way Git processed certain path information. A remote attacker could create a specially crafted Git repository that would cause a Git client or server to crash or, possibly,...

git: path_name() integer truncation and overflow leading to buffer overflow

An integer truncation flaw and an integer overflow flaw, both leading to a heap-based buffer overflow, were found in the way Git processed certain path information. A remote attacker could create a specially crafted Git repository that would cause a Git client or server to crash or, possibly,...

DEBIAN-CVE-2014-9706

The buildindexfromtree function in index.py in Dulwich before 0.9.9 allows remote attackers to execute arbitrary code via a commit with a directory path starting with .git/, which is not properly handled when checking out a working tree...