8 matches found
EUVD-2026-25964
A weakness has been identified in dvladimirov MCP up to 0.1.0. The impacted element is the function GitSearchRequest of the file mcpserver.py of the component Git Search API. Executing a manipulation of the argument repourl/pattern can lead to command injection. The attack can be executed remotel...
CVE-2026-7211 dvladimirov MCP Git Search API mcp_server.py GitSearchRequest command injection
A weakness has been identified in dvladimirov MCP up to 0.1.0. The impacted element is the function GitSearchRequest of the file mcpserver.py of the component Git Search API. Executing a manipulation of the argument repourl/pattern can lead to command injection. The attack can be executed remotel...
PT-2025-51337
Name of the Vulnerable Software and Affected Versions Weblate versions prior to 5.15 Description Weblate is a web-based localization tool. The Create Component functionality allows authorized users to add new translation components by specifying a version control system and a source code reposito...
PT-2025-5345 · Hl7 · Hl7 Fhir Ig Publisher
Name of the Vulnerable Software and Affected Versions: HL7 FHIR IG publisher versions prior to 1.8.9 Description: The HL7 FHIR IG publisher has an issue where it exposes usernames and credentials in the built Implementation Guide when using git commands to determine the URL of the originating rep...
osbuild-composer bug fix update
Osbuild-composer provides an image-building service based on osbuild. Bug fixes: RHEL for Edge Container Commit fails silently when Repo URL doesn't have a trailing slash. BZ1951192 Unstable ordering of results from osbuild v2 causes test failures. BZ1955094...
SUSE SLED15 / SLES15 Security Update : libzypp, zypper (SUSE-SU-2021:0109-1)
This update for libzypp, zypper fixes the following issues : Update zypper to version 1.14.41 Update libzypp to 17.25.4 CVE-2017-9271: Fixed information leak in the log file bsc1050625 bsc1177583 RepoManager: Force refresh if repo url has changed bsc1174016 RepoManager: Carefully tidy up the...
gitea -- remote code execution
The Gitea team reports: Prevent remote code execution vulnerability with mirror repo URL settings...
DEBIAN-CVE-2016-7793
sociomantic-tsunami git-hub before 0.10.3 allows remote attackers to execute arbitrary code via a crafted repository URL...