Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

The Hacker News
The Hacker Newsadded 2021/12/23 7:51 a.m.52 views

4-Year-Old Bug in Azure App Service Exposed Hundreds of Source Code Repositories

A security flaw has been unearthed in Microsoft's Azure App Service that resulted in the exposure of source code of customer applications written in Java, Node, PHP, Python, and Ruby for at least four years since September 2017. The vulnerability, codenamed "NotLegit," was reported to the tech...

7.1AI score
Exploits0
Wiz blog
Wiz blogadded 2021/12/21 5:8 a.m.15 views

NotLegit: Azure App Service vulnerability exposed hundreds of source code repositories

Read about the NotLegit vulnerability discovered by the Wiz Research Team, where the Azure App Service exposed hundreds of source code repositories...

7.4AI score
Exploits0
The Hacker News
The Hacker Newsadded 2021/03/17 11:20 a.m.4 views

Mimecast Finds SolarWinds Hackers Stole Some of Its Source Code

Email security firm Mimecast on Tuesday revealed that the state-sponsored SolarWinds hackers who broke into its internal network also downloaded source code out of a limited number of repositories. "The threat actor did access a subset of email addresses and other contact information and hashed a...

5.9AI score
Exploits0
RedhatCVE
RedhatCVEadded 2019/10/11 5:5 p.m.22 views

CVE-2017-15041

An arbitrary command execution flaw was found in the way Go's "go get" command handled the checkout of source code repositories. A remote attacker capable of hosting malicious repositories could potentially use this flaw to cause arbitrary command execution on the client side...

9.8CVSS3.5AI score0.02846EPSS
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2019/08/12 12:0 a.m.32 views

NewStart CGSL CORE 5.04 / MAIN 5.04 : golang Multiple Vulnerabilities (NS-SA-2019-0047)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has golang packages installed that are affected by multiple vulnerabilities: - An arbitrary command execution flaw was found in the way Go's go get command handled the checkout of source code repositories. A remote attacker...

9.8CVSS7.2AI score0.36789EPSS
Exploits4References4
Mageia
Mageiaadded 2018/01/21 9:31 p.m.45 views

Updated golang packages fix security vulnerabilities

An arbitrary command execution flaw was found in the way Go's "go get" command handled the checkout of source code repositories. A remote attacker capable of hosting malicious repositories could potentially use this flaw to cause arbitrary command execution on the client side CVE-2017-15041. It w...

9.8CVSS2.5AI score0.02846EPSS
Exploits0References2
ThreatPost
ThreatPostadded 2011/09/12 5:2 p.m.7 views

Linux Foundation Shuts More Web Sites After Discovering Compromise

The ripple effects of an August attack on the website kernel.org washed up on the Linux Foundation last week, forcing the group to take down its Web site and warn users that their account information may have been compromised. A message posted on the Foundation’s Web site, linux.com, over the...

0.1AI score
Exploits0References4
Rows per page
Query Builder