Lucene search
+L

24 matches found

Cvelist
Cvelist
added 2 hours ago5 views

CVE-2026-46420 setup-php: Command Injection in Repository-Derived PHP Version Resolution

setup-php is a GitHub action to set up PHP with extensions, php.ini configuration, coverage drivers, and tools. From 2.25.0 prior to 2.37.1, shivammathur/setup-php resolves the PHP version from repository-controlled files such as .php-version, composer.lock through platform-overrides.php, and...

5.6CVSS0.01576EPSS
Exploits0References3
CVE
CVE
added 2 hours ago17 views

CVE-2026-46420

CVE-2026-46420 affects the GitHub Action setup-php (shivammathur/setup-php). From 2.25.0 up to, but not including, 2.37.1, the action resolves the PHP version from repository-controlled files (e.g., .php-version, composer.lock via platform-overrides.php, and composer.json via config.platform.php)...

5.6CVSS5.5AI score0.01576EPSS
Exploits0References3
EUVD
EUVD
added 7 hours ago5 views

EUVD-2026-45189

A path traversal vulnerability was identified in GitHub Enterprise Server that allowed an attacker who had code execution inside the Dependabot updater container to write files to arbitrary repository paths, including GitHub Actions workflow files under .github/workflows/ as the path validation d...

8.6CVSS6.3AI score
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/07/06 12:0 a.m.9 views

PT-2026-56005

Name of the Vulnerable Software and Affected Versions Terraform Enterprise versions prior to 2.0.4 Terraform Enterprise versions prior to 1.2.4 Description An issue exists in the version control system VCS ingestion of registry modules where the intended boundary on packaged module content is not...

7.7CVSS6.1AI score0.00295EPSS
Exploits0References3
OSV
OSV
added 2026/06/25 5:0 p.m.3 views

CVE-2026-55180 pnpm: Repository config can expand victim environment secrets into registry requests before scripts run

pnpm is a package manager. Prior to 10.34.2 and 11.5.3, pnpm and pacquet expanded $ENVVAR placeholders from repository-controlled .npmrc and pnpm-workspace.yaml into registry request destinations and registry credentials. A malicious repository could cause dependency resolution to send victim...

6.5CVSS5.9AI score0.00212EPSS
Exploits1References3
OSV
OSV
added 2026/06/24 8:31 p.m.5 views

CVE-2026-52811 Gogs: UploadRepoFiles writes outside repo working tree via committed parent sym

Gogs is an open source self-hosted Git service. Prior to 0.14.3, Repository.UploadRepoFiles checks for symlinks only on the leaf of the upload target osx.IsSymlinktargetPath. The siblings UpdateRepoFile, DeleteRepoFile, and GetDiffPreview use hasSymlinkInPath, which lstats every component —...

9CVSS6AI score0.00474EPSS
Exploits0References6
OSV
OSV
added 2026/06/18 2:17 p.m.10 views

DEBIAN-CVE-2026-44942

A path traversal in handling the "path" component of .repo files processed by libzypp before 17.38.13 in the 17.x series, or before 16.22.19 could be used by attackers to fill directories on the system outside of the zypp cache with content...

6.5CVSS5.8AI score0.00329EPSS
Exploits0References1
OSV
OSV
added 2026/06/18 9:57 a.m.4 views

CVE-2026-44942 libzypp .repo files can have an optional path which can lead to path traversal attacks

A path traversal in handling the "path" component of .repo files processed by libzypp before 17.38.13 in the 17.x series, or before 16.22.19 could be used by attackers to fill directories on the system outside of the zypp cache with content...

6.5CVSS5.9AI score0.00329EPSS
Exploits0References5
OSV
OSV
added 2026/06/09 3:16 p.m.7 views

SUSE-SU-2026:22064-1 Security update for libzypp

This update for libzypp fixes the following issue Update to 17.38.13 35: - CVE-2026-44942: .repo files can have an optional path which can lead to path traversal attacks bsc1267874...

6.5CVSS5.3AI score0.00329EPSS
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/05/20 10:1 p.m.11 views

Malicious code in supership-scan (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0aebde5ba55a72b6d4c6917ccf22db1427d434fed04cecc22dd16844e2d39033 The package advertises itself as a local-only static analyzer README: "Runs locally. Your code never leaves the machine" and "What's never transmitte...

5.9AI score
Exploits0References1
Snyk
Snyk
added 2026/05/20 3:31 p.m.10 views

Command Injection

Overview setup-php is a Setup PHP for use with GitHub Actions Affected versions of this package are vulnerable to Command Injection via the process that resolves PHP version from repository-controlled files such as .php-version, composer.lock, or composer.json and incorporates the value into the...

6.3CVSS6.2AI score0.01576EPSS
Exploits0References2
OSV
OSV
added 2026/05/20 3:31 p.m.21 views

GHSA-PQWM-Q9PV-PH8R Setup PHP: Command Injection in Repository-Derived PHP Version Resolution

Summary A command injection vulnerability was identified in shivammathur/setup-php when the action resolves the PHP version from repository-controlled files and uses that value while generating the platform setup script. In affected versions, setup-php may read the PHP version from: - .php-versio...

5.6CVSS6.2AI score0.01576EPSS
Exploits0References3
RustSec
RustSec
added 2024/05/22 12:0 p.m.6 views

Traversal outside working tree enables arbitrary code execution

Summary During checkout, gitoxide does not verify that paths point to locations in the working tree. A specially crafted repository can, when cloned, place new files anywhere writable by the application. Details Although gix-worktree-state checks for collisions with existing files, it does not...

8.8CVSS8AI score0.00816EPSS
Exploits0Affected Software1
Positive Technologies
Positive Technologies
added 2024/04/05 12:0 a.m.6 views

PT-2024-21910 · Dnf5 · Dnf5

Name of the Vulnerable Software and Affected Versions: dnf5 affected versions not specified Description: The issue arises from the dnf5 D-Bus daemon accepting arbitrary configuration parameters from unprivileged users. This allows a local root exploit by tricking the daemon into loading a...

8.8CVSS6.9AI score0.00213EPSS
Exploits1References8
SUSE CVE
SUSE CVE
added 2023/02/15 4:14 a.m.4 views

SUSE CVE-2019-9630

Sonatype Nexus Repository Manager before 3.17.0 has a weak default of giving any unauthenticated user read permissions on the repository files and images...

7.5CVSS7.7AI score0.01378EPSS
Exploits0References3
NVD
NVD
added 2022/11/01 6:15 p.m.51 views

CVE-2022-23738

An improper cache key vulnerability was identified in GitHub Enterprise Server that allowed an unauthorized actor to access private repository files through a public repository. To exploit this, an actor would need to already be authorized on the GitHub Enterprise Server instance, be able to crea...

5.7CVSS0.00634EPSS
Exploits0References5
GithubExploit
GithubExploit
added 2021/09/12 5:57 p.m.13 views

Exploit for Session Fixation in Gogs

CVE-2018-18925 Exploitation of CVE-2018-18925 a Remote Code Ex...

9.8CVSS7.9AI score0.31882EPSS
Exploits2
Gitee
Gitee
added 2020/09/02 5:50 p.m.2 views

metasploit-framework

This is an open-source project repository for the Metasploit Framework, a popular penetration testing tool. The repository contains various files and directories related to the project, including configuration files, test files, and documentation. The Metasploit Framework is a software platform f...

7.2AI score
Exploits0
NVD
NVD
added 2019/11/07 10:15 p.m.29 views

CVE-2007-5743

viewvc 1.0.3 allows improper access control to files in a repository when using the "forbidden" configuration option...

7.5CVSS7.5AI score0.01102EPSS
Exploits1References2
Debian CVE
Debian CVE
added 2019/11/07 9:55 p.m.40 views

CVE-2007-5743

Removed by vendor...

7.5CVSS7.7AI score0.01102EPSS
Exploits1
Rows per page
Query Builder