CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

108 matches found

Positive Technologies•added 2021/03/23 12:0 a.m.•1 views

PT-2021-15237 · Github · Github Enterprise Server

Name of the Vulnerable Software and Affected Versions: GitHub Enterprise Server versions prior to 3.0.3 GitHub Enterprise Server version 2.22.9 GitHub Enterprise Server version 2.21.17 Description: A remote code execution issue was identified in GitHub Enterprise Server that could be exploited wh...

8.8CVSS9AI score0.02434EPSS

Exploits0References8

NVD•added 2021/03/03 4:15 a.m.•14 views

CVE-2020-10519

A remote code execution vulnerability was identified in GitHub Enterprise Server that could be exploited when building a GitHub Pages site. User-controlled configuration of the underlying parsers used by GitHub Pages were not sufficiently restricted and made it possible to execute commands on the...

8.8CVSS0.01748EPSS

Exploits0References3

OSV•added 2021/03/03 4:15 a.m.•0 views

CVE-2020-10519

8.8CVSS7.8AI score0.01748EPSS

Exploits0References3

Prion•added 2021/03/03 4:15 a.m.•12 views

Remote code execution

6.5CVSS8.9AI score0.01748EPSS

Exploits0References3Affected Software1

Cvelist•added 2021/03/03 3:25 a.m.•14 views

CVE-2020-10519 Unsafe configuration options in GitHub Pages leading to remote code execution on GitHub Enterprise Server

9AI score0.01748EPSS

Exploits0References3

NVD•added 2020/08/27 10:15 p.m.•15 views

CVE-2020-10518

8.8CVSS9AI score0.03152EPSS

Exploits0References3

OSV•added 2020/08/27 10:15 p.m.•0 views

CVE-2020-10518

8.8CVSS7.8AI score0.03152EPSS

Exploits0References3

Cvelist•added 2020/08/27 9:55 p.m.•20 views

CVE-2020-10518 Unsafe configuration options in GitHub Pages leading to remote code execution on GitHub Enterprise Server

9AI score0.03152EPSS

Exploits0References3

Tenable Nessus•added 2020/08/10 12:0 a.m.•25 views

Debian DLA-2316-1 : ruby-kramdown security update

ruby-kramdown processes the template option inside Kramdown documents by default, which allows unintended read access such as template='/etc/passwd' or unintended embedded Ruby code execution such as a string that begins with template='string://%= . NOTE: kramdown is used in Jekyll, GitLab Pages,...

9.8CVSS8AI score0.07509EPSS

Exploits0References4

Github Security Blog•added 2020/08/07 10:27 p.m.•57 views

Unintended read access in kramdown gem

The kramdown gem before 2.3.0 for Ruby processes the template option inside Kramdown documents by default, which allows unintended read access such as template="/etc/passwd" or unintended embedded Ruby code execution such as a string that begins with template="string://%= . NOTE: kramdown is used...

9.8CVSS2.6AI score0.07509EPSS

Exploits0References15Affected Software1

Tenable Nessus•added 2020/07/30 12:0 a.m.•69 views

SUSE SLES12 Security Update : webkit2gtk3 (SUSE-SU-2020:2069-1)

This update for webkit2gtk3 fixes the following issues : Update to version 2.28.3 bsc1173998 : + Enable kinetic scrolling with async scrolling. + Fix web process hangs on large GitHub pages. + Bubblewrap sandbox should not attempt to bind empty paths. + Fix threading issues in the media player. +...

10CVSS6.8AI score0.82826EPSS

Exploits5References18

OPENSUSE Linux•added 2020/07/26 12:0 a.m.•69 views

Security update for webkit2gtk3 (important)

openSUSE Security Update: Security update for webkit2gtk3 Announcement ID: openSUSE-SU-2020:1064-1 Rating: important References: 1173998 Cross-References: CVE-2020-13753 CVE-2020-9802 CVE-2020-9803 CVE-2020-9805 CVE-2020-9806 CVE-2020-9807 CVE-2020-9843 CVE-2020-9850 Affected Products: openSUSE...

10CVSS8.4AI score0.82826EPSS

Exploits5References1

Tenable Nessus•added 2020/07/22 12:0 a.m.•59 views

SUSE SLED15 / SLES15 Security Update : webkit2gtk3 (SUSE-SU-2020:1990-1)

10CVSS6.8AI score0.82826EPSS

Exploits5References18

NVD•added 2020/07/17 4:15 p.m.•16 views

CVE-2020-14001

9.8CVSS0.07509EPSS

Exploits0References13

OSV•added 2020/07/17 4:15 p.m.•17 views

CVE-2020-14001