Fedora Update for eclipse-jgit FEDORA-2019-df57551f6d

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Debian DLA-1764-1 : mercurial security update

It was discovered that there was a path traversal vulnerability in the 'mercurial' distributed revision version control system. Symbolic links and subrepositories could be used defeat Mercurial's path-checking logic and write files outside the repository root. For Debian 8 'Jessie', this issue ha...

The vulnerability of the Team Foundation Server project management and version control system arises from the lack of measures taken to protect the website structure. This allows attackers to execute arbitrary code.

The vulnerability of the Team Foundation Server project management and version control system exists due to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

[SECURITY] Fedora 29 Update: eclipse-jgit-5.2.0-4.fc29

A pure Java implementation of the Git version control system...

[SECURITY] Fedora 28 Update: subversion-1.11.1-1.fc28

Subversion is a concurrent version control system which enables one or more users to collaborate in developing and maintaining a hierarchy of files and directories while keeping a history of all changes. Subversion only stores the differences between versions, instead of every complete file...

The vulnerability of the “git clone” function in a distributed version control system like Git allows a perpetrator to execute arbitrary code.

The vulnerability of the “git clone” function in a distributed version control system like Git is related to the improper handling of the recursive “git clone” command applied to a supersource project where the .gitmodules file contains an field with a URL starting with the symbol “-”. Exploiting...

eBrigade ERP 4.5 Arbitrary File Download

!/usr/bin/python import mechanize, sys, cookielib, requests import colorama, urllib, re, random, urllib2 import wget from colorama import Fore from tqdm import tqdm from pathlib import Path def bannerche: print ''' @-------------------------------------------------------------@ | eBrigade ERP "...

The vulnerability of the Mercuria version control software, related to access control errors, allows a violator to compromise data confidentiality and integrity.

The vulnerability of the Mercuria version control software is related to errors in access control on the server. Exploiting this vulnerability can allow a malicious actor to compromise data confidentiality and integrity...

The vulnerability of the distributed Git version control system, related to errors in the processing of specially crafted submodule names, allows a hacker to execute arbitrary code.

The vulnerability of the distributed Git version control system is related to errors in the processing of specially crafted module names in the .gitmodules file. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

git: arbitrary code execution via .gitmodules

An option injection flaw has been discovered in git when it recursively clones a repository with sub-modules. A remote attacker may configure a malicious repository and trick a user into recursively cloning it, thus executing arbitrary commands on the victim's machine...

Security Analysis Toolkit for Proprietary Car Protocols: CANalyzat0r

While car manufacturers steadily refine and advance vehicle systems, requirements of the underlying networks increase even further. Striving for smart cars, a fast-growing amount of components are interconnected within a single car. This results in specialized and often proprietary car protocols...

net-snmp 5.7.3 Denial Of Service

/ | | | / / | | -| || -| | | . | ||/ ||||| ||||||| | || 2018-10-08 NET-SNMP REMOTE DOS =================== Second bug is remotely exploitable only with knowledge of the community string in this case "public" leading to Denial of Service: echo -n...

DEBIAN-CVE-2018-17456

Git before 2.14.5, 2.15.x before 2.15.3, 2.16.x before 2.16.5, 2.17.x before 2.17.2, 2.18.x before 2.18.1, and 2.19.x before 2.19.1 allows remote code execution during processing of a recursive "git clone" of a superproject if a .gitmodules file has a URL field beginning with a '-' character...

CMS BUZZ 2.9 Cross Site Scripting

Title: ======= CMS BUZZ 2.9 - Reflected Cross-Site Scripting Introduction: ============== A content management system CMS is a computer application that supports the creation and modification of digital content. It is often used to support multiple users working in a collaborative environment. CM...

CVE-2018-12606

An issue was discovered in GitLab Community Edition and Enterprise Edition before 10.7.6, 10.8.x before 10.8.5, and 11.x before 11.0.1. The wiki contains a persistent XSS issue due to a lack of output encoding affecting a specific markdown feature...

CentOS Update for emacs-git CESA-2018:1957 centos7

Check the version of emacs-git SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882913";...

CVE-2018-5428

The version control adapters component of TIBCO Data Virtualization formerly known as Cisco Information Server contains vulnerabilities that may allow for arbitrary command execution. Affected releases are TIBCO Data Virtualization: 7.0.5; 7.0.6...

CVE-2018-5428

The version control adapters component of TIBCO Data Virtualization formerly known as Cisco Information Server contains vulnerabilities that may allow for arbitrary command execution. Affected releases are TIBCO Data Virtualization: 7.0.5; 7.0.6...

Input validation

The version control adapters component of TIBCO Data Virtualization formerly known as Cisco Information Server contains vulnerabilities that may allow for arbitrary command execution. Affected releases are TIBCO Data Virtualization: 7.0.5; 7.0.6...

CVE-2018-5428 TIBCO Data Virtualization Command Injection Vulnerability

The version control adapters component of TIBCO Data Virtualization formerly known as Cisco Information Server contains vulnerabilities that may allow for arbitrary command execution. Affected releases are TIBCO Data Virtualization: 7.0.5; 7.0.6...