8 matches found
PT-2022-13733 · Medialize · Uri.Js
Name of the Vulnerable Software and Affected Versions: medialize/uri.js versions prior to 1.19.11 Description: The issue arises when parsing a URL without a scheme and with excessive slashes, like ///www.example.com. Unlike browsers, which parse such URLs as http://www.example.com, the affected...
git: Crafted URL containing new lines, empty host or lacks a scheme can cause credential leak
A flaw was found in git where credentials can be leaked through the use of a crafted URL. The crafted URL must contain a newline, empty host, or lack a scheme so that the credential helper is fulled into giving the information of a different host to the client. The highest threat from this...
git: Crafted URL containing new lines, empty host or lacks a scheme can cause credential leak
A flaw was found in git where credentials can be leaked through the use of a crafted URL. The crafted URL must contain a newline, empty host, or lack a scheme so that the credential helper is fulled into giving the information of a different host to the client. The highest threat from this...
git: Crafted URL containing new lines, empty host or lacks a scheme can cause credential leak
A flaw was found in git where credentials can be leaked through the use of a crafted URL. The crafted URL must contain a newline, empty host, or lack a scheme so that the credential helper is fulled into giving the information of a different host to the client. The highest threat from this...
git: Crafted URL containing new lines, empty host or lacks a scheme can cause credential leak
A flaw was found in git where credentials can be leaked through the use of a crafted URL. The crafted URL must contain a newline, empty host, or lack a scheme so that the credential helper is fulled into giving the information of a different host to the client. The highest threat from this...
git: Crafted URL containing new lines, empty host or lacks a scheme can cause credential leak
A flaw was found in git where credentials can be leaked through the use of a crafted URL. The crafted URL must contain a newline, empty host, or lack a scheme so that the credential helper is fulled into giving the information of a different host to the client. The highest threat from this...
git: Crafted URL containing new lines, empty host or lacks a scheme can cause credential leak
A flaw was found in git where credentials can be leaked through the use of a crafted URL. The crafted URL must contain a newline, empty host, or lack a scheme so that the credential helper is fulled into giving the information of a different host to the client. The highest threat from this...
USN-4334-1 git vulnerability
Carlo Arenas discovered that Git incorrectly handled certain URLs containing newlines, empty hosts, or lacking a scheme. A remote attacker could possibly use this issue to trick Git into returning credential information for a wrong host...