RUSTSEC-2024-0015 filesystem-rs may be implicitly unmaintained

The last release was over 5 years ago, and the last commit was over 4 years ago. The maintainers have not responded to a pull request to update dependencies that are themselves unmaintained, and which poses the question of maintenance...

PT-2024-40904 · Crates.Io · Filesystem

Name of the Vulnerable Software and Affected Versions: No specific software or versions mentioned Description: The software in question has not seen a release in over 5 years, with the last commit being over 4 years ago. This raises concerns about maintenance, as the maintainers have not responde...

Node.js third-party modules: [last-commit-log] Command Injection

I would like to report Command Injection in last-commit-log It allows execution of arbitrary commands Module module name: last-commit-log version: [email protected] npm page: https://www.npmjs.com/package/last-commit-log Module Description Node.js module to get the last git commit information...

GitLab CE/EE Information Disclosure Vulnerability (CNVD-2019-32225)

GitLab is an open source application developed using Ruby on Rails that implements a self-hosted Git project repository that can be accessed through a web interface for public and private projects.GitLab EE is the GitLab Enterprise Edition and GitLab CE is the GitLab Community Edition. GitLab CE/...

UBUNTU-CVE-2019-6794

An issue was discovered in GitLab Community and Enterprise Edition before 11.5.8, 11.6.x before 11.6.6, and 11.7.x before 11.7.1. It allows Information Disclosure issue 5 of 6. A project guest user can view the last commit status of the default branch...

CVE-2019-6794

CVE-2019-6794 affects GitLab Community and Enterprise Edition prior to 11.5.8, 11.6.x prior to 11.6.6, and 11.7.x prior to 11.7.1. The issue allows information disclosure where a project guest user can view the last commit status of the default branch. The root cause details are not fully expande...