Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

27 matches found

Github Security Blog
Github Security Blogadded 2025/07/30 4:40 p.m.8 views

GitProxy New Branch Approval Exploit

Summary An attacker can exploit the way GitProxy handles new branch creation to bypass the approval of prior commits on the parent branch. Because it can greatly affect system integrity, we classify this as a High impact vulnerability. Details GitProxy checks for the...

8.2CVSS7.1AI score0.00187EPSS
Exploits1References6Affected Software1
OSV
OSVadded 2025/07/30 4:40 p.m.2 views

GHSA-39P2-8HQ9-FWJ6 GitProxy New Branch Approval Exploit

Summary An attacker can exploit the way GitProxy handles new branch creation to bypass the approval of prior commits on the parent branch. Because it can greatly affect system integrity, we classify this as a High impact vulnerability. Details GitProxy checks for the...

8.2CVSS7.1AI score0.00187EPSS
Exploits1References6
OSV
OSVadded 2025/07/30 4:40 p.m.3 views

GHSA-XXMH-RF63-QWJV GitProxy Backfile Parsing Exploit

Summary An attacker can craft a malicious Git packfile to exploit the PACK signature detection in the parsePush.ts. By embedding a misleading PACK signature within commit content and carefully constructing the packet structure, the attacker can trick the parser into treating invalid or unintended...

7CVSS7.4AI score0.00227EPSS
Exploits1References6
OSV
OSVadded 2025/07/30 4:34 p.m.2 views

GHSA-QR93-8WWF-22G4 GitProxy Approval Bypass When Pushing Multiple Branches

Summary This vulnerability allows a user to push to the remote repository while bypassing policies and explicit approval. Since checks and plugins are skipped, code containing secrets or unwanted changes could be pushed into a repository. Because it can allow policy violations to go undetected, w...

8.3CVSS7.4AI score0.00187EPSS
Exploits1References6
CNNVD
CNNVDadded 2025/07/30 12:0 a.m.2 views

The Fintech Open Source Foundation GitProxy 信息泄露漏洞

The Fintech Open Source Foundation GitProxy is a The Fintech Open Source Foundation Foundation deployment of custom push protections and policies on top of Git. An information disclosure vulnerability exists in The Fintech Open Source Foundation GitProxy versions 1.19.1 and earlier, which stems...

7.1CVSS5.9AI score0.00227EPSS
Exploits1References4
CNNVD
CNNVDadded 2025/07/30 12:0 a.m.2 views

The Fintech Open Source Foundation GitProxy 安全漏洞

The Fintech Open Source Foundation GitProxy is a deployment of custom push protection and policies on top of Git by The Fintech Open Source Foundation Foundation. A security vulnerability exists in The Fintech Open Source Foundation GitProxy 1.19.1 and earlier versions, which stems from a...

8.3CVSS6.3AI score0.00187EPSS
Exploits1References4
Positive Technologies
Positive Technologiesadded 2025/07/30 12:0 a.m.4 views

PT-2025-31446 · Gitproxy · Git-Proxy

Name of the Vulnerable Software and Affected Versions: GitProxy versions 1.19.1 and below Description: GitProxy is an application that acts as an intermediary between developers and a Git remote endpoint. A flaw in how GitProxy handles new branch creation allows attackers to bypass the approval o...

8.2CVSS6.2AI score0.00187EPSS
Exploits1References12
Rows per page
Query Builder