EUVD-2025-135726

Malicious code in tearich-racing3 npm...

EUVD-2022-25582

Malicious code in bioql PyPI...

CVE-2023-21294

In Slice, there is a possible disclosure of installed packages due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2020-6833

An issue was discovered in GitLab EE 11.3 and later. A GitLab Workhorse bypass could lead to package and file disclosure via request smuggling...

CVE-2022-20322

In PackageManager, there is a possible installed package disclosure due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID:...

PT-2020-12652 · Microsoft +1 · Nuget +2

Name of the Vulnerable Software and Affected Versions: GitLab Community Edition CE versions 12.7.x through 12.7.8 GitLab Community Edition CE versions 12.8.x through 12.8.8 GitLab Community Edition CE versions 12.9.x through 12.9.2 GitLab Enterprise Edition EE versions 12.7.x through 12.7.8 GitLa...

CVE-2020-6833

An issue was discovered in GitLab EE 11.3 and later. A GitLab Workhorse bypass could lead to package and file disclosure via request smuggling...

CVE-2020-6833

An issue was discovered in GitLab EE 11.3 and later. A GitLab Workhorse bypass could lead to package and file disclosure via request smuggling...

Design/Logic Flaw

An issue was discovered in GitLab EE 11.3 and later. A GitLab Workhorse bypass could lead to package and file disclosure via request smuggling...

CVE-2020-6833

Removed by vendor...

CVE-2020-6833

An issue was discovered in GitLab EE 11.3 and later. A GitLab Workhorse bypass could lead to package and file disclosure via request smuggling...

CVE-2020-6833

GitLab EE 11.3 and later is affected by a GitLab Workhorse bypass that could lead to package and file disclosure via request smuggling. The issue is documented across multiple sources (OSV, NVD, CNVD, etc.) with the same core description. The connected documents do not provide a published fix or ...

PT-2020-19252 · Gitlab · Gitlab Ce/Ee +1

Name of the Vulnerable Software and Affected Versions: GitLab EE versions 11.3 and later Description: An issue was discovered that could lead to a GitLab Workhorse bypass, resulting in package and file disclosure via request smuggling. Recommendations: For GitLab EE versions 11.3 and later, at th...

FreeBSD : Gitlab -- Multiple Vulnerabilities (c5bd9068-440f-11ea-9cdb-001b217b3468)

Gitlab reports : Path Traversal to Arbitrary File Read User Permissions Not Validated in ProjectExportWorker XSS Vulnerability in File API Package and File Disclosure through GitLab Workhorse XSS Vulnerability in Create Groups Issue and Merge Request Activity Counts Exposed Email Confirmation...

Gitlab -- Multiple Vulnerabilities

Gitlab reports: Path Traversal to Arbitrary File Read User Permissions Not Validated in ProjectExportWorker XSS Vulnerability in File API Package and File Disclosure through GitLab Workhorse XSS Vulnerability in Create Groups Issue and Merge Request Activity Counts Exposed Email Confirmation Bypa...

Huawei EulerOS: Security Advisory for libcgroup (EulerOS-SA-2019-1918)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian: Security Advisory (DSA-4030-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

S.u.S.E. Linux 6.3/6.4 Installed Package Disclosure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1707/info By submitting a specific url to the web server http://hosts.any/doc/packages/ , any user from any host may obtain a list of packages installed on a S.u.S.E 6.3 or 6.4 system. This problem is due to a configurati...

SuSE Linux 6.3/6.4 - Installed Package Disclosure

source: https://www.securityfocus.com/bid/1707/info By submitting a specific url to the web server "http://hosts.any/doc/packages/" , any user from any host may obtain a list of packages installed on a S.u.S.E 6.3 or 6.4 system. This problem is due to a configuration in the Apache httpd.conf...

SuSE Linux 6.36.4 - Installed Package Disclosure

SuSE Linux 6.36.4 - Installed Package Disclosure source: https://www.securityfocus.com/bid/1707/info By submitting a specific url to the web server "http://hosts.any/doc/packages/" , any user from any host may obtain a list of packages installed on a S.u.S.E 6.3 or 6.4 system. This problem is due...