15 matches found
EUVD-2022-6005
Malicious code in bioql PyPI...
EUVD-2022-6192
Malicious code in bioql PyPI...
EUVD-2022-5965
Malicious code in bioql PyPI...
CVE-2022-1986
OS Command Injection in GitHub repository gogs/gogs prior to 0.12.9...
CVE-2022-1992
Path Traversal in GitHub repository gogs/gogs prior to 0.12.9...
CVE-2022-1993
Path Traversal in GitHub repository gogs/gogs prior to 0.12.9...
CVE-2022-1993
Path Traversal in GitHub repository gogs/gogs prior to 0.12.9...
Command injection
OS Command Injection in GitHub repository gogs/gogs prior to 0.12.9...
Path traversal
Path Traversal in GitHub repository gogs/gogs prior to 0.12.9...
Gogs 路径遍历漏洞
Gogs Go Git Service is a Go-based self-service Git hosting service from the GOGS team that supports creating and migrating public/private repositories, adding and removing repository collaborators, and more. A security vulnerability exists in Gogs versions prior to 0.12.9, which stems from a path...
Gogs 路径遍历漏洞
Gogs Go Git Service is a Go-based self-service Git hosting service from the GOGS team that supports creating and migrating public/private repositories, adding and removing repository collaborators, and more. A security vulnerability exists in Gogs versions prior to 0.12.9, which stems from a path...
OS Command Injection in file editor in Gogs
Impact The malicious user is able to update a crafted config file into repository's .git directory in combination with crafted file deletion to gain SSH access to the server. All installations with repository upload enabled default are affected. Patches File deletions are prohibited to repository...
PT-2022-14245 · Gogs · Gogs
Name of the Vulnerable Software and Affected Versions: gogs/gogs versions prior to 0.12.9 Description: The issue allows a malicious user to craft HTTP requests to access unauthorized Git directories. All installations are affected. Recommendations: For versions prior to 0.12.9, upgrade to 0.12.9 ...
PT-2022-14244 · Gogs · Gogs
Name of the Vulnerable Software and Affected Versions: gogs/gogs versions prior to 0.12.9 Description: The issue allows a malicious user to delete and upload arbitrary files. This affects all installations on Windows where repository upload is enabled, which is the default setting. The estimated...
HashiCorp Nomad and Nomad Enterprise up to Security Breach
Hashicorp Nomad and Hashicorp Nomad Enterprise are both products of Hashicorp, Inc.Hashicorp Nomad is a distributed, data center-aware cluster and application scheduler. It supports the deployment of microservices, batch, containerized and non-containerized applications.Hashicorp Nomad Enterprise...