CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

108 matches found

OSV•added 2023/03/08 7:15 p.m.•1 views

CVE-2023-23760

A path traversal vulnerability was identified in GitHub Enterprise Server that allowed remote code execution when building a GitHub Pages site. To exploit this vulnerability, an attacker would need permission to create and build a GitHub Pages site on the GitHub Enterprise Server instance. This...

8.8CVSS6.3AI score0.01108EPSS

Exploits0References4

Prion•added 2023/03/08 7:15 p.m.•16 views

Path traversal

6.5CVSS8.8AI score0.01108EPSS

Exploits0References4Affected Software1

Positive Technologies•added 2023/03/08 12:0 a.m.•2 views

PT-2023-19185 · Github · Github Enterprise Server

Name of the Vulnerable Software and Affected Versions: GitHub Enterprise Server versions prior to 3.8 Description: A path traversal vulnerability was identified in GitHub Enterprise Server that allowed remote code execution when building a GitHub Pages site. To exploit this vulnerability, an...

8.8CVSS9AI score0.01108EPSS

Exploits0References9

OSV•added 2023/02/16 9:15 p.m.•2 views

CVE-2023-22380

A path traversal vulnerability was identified in GitHub Enterprise Server that allowed arbitrary file reading when building a GitHub Pages site. To exploit this vulnerability, an attacker would need permission to create and build a GitHub Pages site on the GitHub Enterprise Server instance. This...

6.5CVSS6.6AI score0.00361EPSS

Exploits0References1

Prion•added 2023/02/16 9:15 p.m.•19 views

Path traversal

4CVSS6.4AI score0.00361EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2023/02/16 12:0 a.m.•7 views

CVE-2023-22380 Path traversal in GitHub Enterprise Server leading to arbitrary file reading when building a GitHub Pages site

6.7AI score0.00361EPSS

Exploits0References1

CVE•added 2023/02/16 12:0 a.m.•60 views

CVE-2023-22380

CVE-2023-22380 describes a path traversal vulnerability in GitHub Enterprise Server that allowed arbitrary file reading when building a GitHub Pages site. The issue affects all versions of GitHub Enterprise Server since 3.7 and is due to a flaw in the file-path handling during Page builds, enabli...

6.5CVSS6.3AI score0.00361EPSS

Exploits0References1Affected Software1

Cvelist•added 2023/02/16 12:0 a.m.•16 views

CVE-2023-22380 Path traversal in GitHub Enterprise Server leading to arbitrary file reading when building a GitHub Pages site

6.5AI score0.00361EPSS

Exploits0References1

OSV•added 2022/12/14 6:15 p.m.•1 views

CVE-2022-46256

8.8CVSS6.2AI score

Exploits0References5

NVD•added 2022/12/14 6:15 p.m.•9 views

CVE-2022-46256

8.8CVSS0.06641EPSS

Exploits0References5

Prion•added 2022/12/14 6:15 p.m.•23 views

Path traversal

6.5CVSS8.8AI score0.06641EPSS

Exploits0References5Affected Software1

CVE•added 2022/12/14 12:0 a.m.•71 views

CVE-2022-46256

CVE-2022-46256 — GitHub Enterprise Server : A path traversal vulnerability allows remote code execution when building a GitHub Pages site. An attacker must have permission to create and build a Pages site on the instance. The issue affects GitHub Enterprise Server and is fixed in versions 3.3.17,...

8.8CVSS8.9AI score0.06641EPSS

Exploits0References5Affected Software1

Vulnrichment•added 2022/12/14 12:0 a.m.•6 views

CVE-2022-46256 Path traversal in GitHub Enterprise Server leading to remote code execution in GitHub Pages

7.8AI score0.06641EPSS

Exploits0References5

Cvelist•added 2022/12/14 12:0 a.m.•15 views

CVE-2022-46256 Path traversal in GitHub Enterprise Server leading to remote code execution in GitHub Pages

9.1AI score0.06641EPSS

Exploits0References5

NVD•added 2022/11/23 6:15 p.m.•12 views

CVE-2022-23740

CRITICAL: An improper neutralization of argument delimiters in a command vulnerability was identified in GitHub Enterprise Server that enabled remote code execution. To exploit this vulnerability, an attacker would need permission to create and build GitHub Pages using GitHub Actions. This...

8.8CVSS0.02923EPSS

Exploits0References1

Prion•added 2022/11/23 6:15 p.m.•13 views

Design/Logic Flaw

6.5CVSS9AI score0.02923EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2022/11/23 12:0 a.m.•2 views

PT-2022-16243 · Github · Github Enterprise Server

Name of the Vulnerable Software and Affected Versions: GitHub Enterprise Server version 3.7.0 Description: An improper neutralization of argument delimiters in a command vulnerability was identified in GitHub Enterprise Server that enabled remote code execution. To exploit this vulnerability, an...

8.8CVSS8AI score0.02923EPSS

Exploits0References7

Tenable Nessus•added 2022/09/13 12:0 a.m.•22 views

SUSE SLES15 Security Update : rubygem-kramdown (SUSE-SU-2022:3259-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2022:3259-1 advisory. - The kramdown gem before 2.3.0 for Ruby processes the template option inside Kramdown documents by default, which allows unintended read...

9.8CVSS8.3AI score0.07509EPSS

Exploits0References4

Kitploit•added 2022/06/29 9:30 p.m.•33 views

Gallia - Extendable Pentesting Framework

Gallia is an extendable pentesting framework with the focus on the automotive domain. The scope of gallia is conducting penetration tests from a single ECU up to whole cars, with the main focus on the UDS interface. Taking advantage of this modular design, the logging and archiving functionality...

7.2AI score

Exploits0References5

NVD•added 2022/02/18 12:15 a.m.•11 views

CVE-2021-41599

A remote code execution vulnerability was identified in GitHub Enterprise Server that could be exploited when building a GitHub Pages site. To exploit this vulnerability, an attacker would need permission to create and build a GitHub Pages site on the GitHub Enterprise Server instance. This...

8.8CVSS0.02496EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by