Lucene search
K
GitlabRecent

1518 matches found

GitLab Advisory Database
GitLab Advisory Database
added 2023/09/09 12:0 a.m.47 views

hutool Buffer Overflow vulnerability

hutool v5.8.21 was discovered to contain a buffer overflow via the component jsonArray...

9.8CVSS7.6AI score0.00769EPSS
Exploits1References4Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/09/09 12:0 a.m.37 views

hutool Buffer Overflow vulnerability

hutool v5.8.21 was discovered to contain a buffer overflow via the component JSONUtil.parse...

7.5CVSS7.7AI score0.00706EPSS
Exploits1References5
GitLab Advisory Database
GitLab Advisory Database
added 2023/09/09 12:0 a.m.57 views

hutool Buffer Overflow vulnerability

hutool v5.8.21 was discovered to contain a buffer overflow via the component jsonArray...

9.8CVSS7.2AI score0.00769EPSS
Exploits1References4Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/09/06 12:0 a.m.60 views

Exposure of Sensitive Information to an Unauthorized Actor

AccessControl provides a general security framework for use in Zope. Python's "format" functionality allows someone controlling the format string to "read" objects accessible recursively via attribute access and subscription from accessible objects. Those attribute accesses and subscriptions use...

7.7CVSS6.9AI score0.00519EPSS
Exploits0References4Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/09/05 12:0 a.m.19 views

Apache Axis 1.x (EOL) may allow RCE when untrusted input is passed to getService

When integrating Apache Axis 1.x in an application, it may not have been obvious that looking up a service through "ServiceFactory.getService" allows potentially dangerous lookup mechanisms such as LDAP. When passing untrusted input to this API method, this could expose the application to DoS, SS...

9.8CVSS7.2AI score0.01931EPSS
Exploits0References6
GitLab Advisory Database
GitLab Advisory Database
added 2023/08/31 12:0 a.m.25 views

Path traversal in Zip Swift

An issue in Zip Swift v2.1.2 allows attackers to execute a path traversal attack via a crafted zip entry...

7.8CVSS6.8AI score0.00439EPSS
Exploits1References7Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/08/31 12:0 a.m.5 views

Filename spoofing in archive

An issue in Archive v3.3.7 allows attackers to spoof zip filenames which can lead to inconsistent filename parsing...

7.8CVSS7.1AI score0.00321EPSS
Exploits1References8Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/08/31 12:0 a.m.5 views

Path traversal in Archive

An issue in Archive v3.3.7 allows attackers to execute a path traversal via extracting a crafted zip file...

7.8CVSS7.2AI score0.00341EPSS
Exploits1References8Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/08/31 12:0 a.m.21 views

Path traversal in ZIPFoundation

An issue in ZIPFoundation v0.9.16 allows attackers to execute a path traversal via extracting a crafted zip file...

7.8CVSS6.8AI score0.00379EPSS
Exploits1References8Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/08/30 12:0 a.m.31 views

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

GitPython is a python library used to interact with Git repositories. In order to resolve some git references, GitPython reads files from the .git directory, in some places the name of the file being read is provided by the user, GitPython does not check if this file is located outside the .git...

6.5CVSS6.7AI score0.01012EPSS
Exploits1References2Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/08/30 12:0 a.m.30 views

Prevent logging invalid header values

Impact What kind of vulnerability is it? Apollo Server can log sensitive information Studio API keys if they are passed incorrectly with leading/trailing whitespace or if they have any characters that are invalid as part of a header value. Who is impacted? Users who all of the below: use either t...

6.7AI score
Exploits0References4Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/08/29 12:0 a.m.16 views

MongoDB Driver may publish events containing authentication-related data

Some MongoDB Drivers may erroneously publish events containing authentication-related data to a command listener configured by an application. The published events may contain security-sensitive data when specific authentication-related commands are executed. Without due care, an application may...

7.5CVSS6.9AI score0.00492EPSS
Exploits0References13Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/08/28 12:0 a.m.45 views

Untrusted Search Path

GitPython is a python library used to interact with Git repositories. When resolving a program, Python/Windows look for the current working directory, and after that the PATH environment. GitPython defaults to use the git command, if a user runs GitPython from a repo has a git.exe or git...

7.8CVSS6.7AI score0.00465EPSS
Exploits1References4Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/08/25 12:0 a.m.127 views

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

giflib v5.2.1 was discovered to contain a segmentation fault via the component getarg.c...

5.5CVSS5.8AI score0.00328EPSS
Exploits1References3Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/08/23 12:0 a.m.33 views

Active Support Possibly Discloses Locally Encrypted Files

There is a possible file disclosure of locally encrypted files in Active Support. This vulnerability has been assigned the CVE identifier CVE-2023-38037. Versions Affected: = 5.2.0 Not affected: 5.2.0 Fixed Versions: 7.0.7.1, 6.1.7.5 Impact ActiveSupport::EncryptedFile writes contents that will b...

6.5AI score0.00258EPSS
Exploits0References4Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/08/22 12:0 a.m.34 views

etcd denial of service vulnerability

Etcd v3.5.4 allows remote attackers to cause a denial of service via function PageWriter.write in pagewriter.go...

7.5CVSS6.7AI score0.01314EPSS
Exploits0References5Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/08/11 12:0 a.m.40 views

Improper Input Validation

GitPython before 3.1.32 does not block insecure non-multi options in clone and clonefrom. NOTE: this issue exists because of an incomplete fix for CVE-2022-24439...

9.8CVSS6.9AI score0.05378EPSS
Exploits1References3Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/08/10 12:0 a.m.24 views

Missing Authorization

1Panel is an open source Linux server operation and maintenance management panel. In version 1.4.3, an arbitrary file write vulnerability could lead to direct control of the server. In the api/v1/file.go file, there is a function called SaveContentthat,It recieves JSON data sent by users in the...

9.8CVSS6.8AI score0.00698EPSS
Exploits1References4Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/08/10 12:0 a.m.43 views

Incorrect Authorization

1Panel is an open source Linux server operation and maintenance management panel. In version 1.4.3, authenticated attackers can download arbitrary files through the API interface. This code has unauthorized access. Attackers can freely download the file content on the target system. This may caus...

6.5CVSS6.9AI score0.00382EPSS
Exploits1References4Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/08/10 12:0 a.m.37 views

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

1Panel is an open source Linux server operation and maintenance management panel. In version 1.4.3, arbitrary file reads allow an attacker to read arbitrary important configuration files on the server. In the api/v1/file.go file, there is a function called LoadFromFile, which directly reads the...

7.5CVSS6.8AI score0.0082EPSS
Exploits1References4Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/08/07 12:0 a.m.25 views

Gitea erroneous repo clones

In Gitea through 1.17.1, repo cloning can occur in the migration function...

6.5CVSS6.9AI score0.00462EPSS
Exploits0References5Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/08/06 12:0 a.m.21 views

Insufficient Session Expiration

Insufficient Session Expiration in GitHub repository admidio/admidio prior to 4.2.11...

6.5CVSS7AI score0.00507EPSS
Exploits1References4Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/08/04 12:0 a.m.70 views

Deserialization of Untrusted Data

The Aerospike Java client is a Java application that implements a network protocol to communicate with an Aerospike server. Prior to versions 7.0.0, 6.2.0, 5.2.0, and 4.5.0 some of the messages received from the server contain Java objects that the client deserializes when it encounters them...

9.8CVSS7.5AI score0.01761EPSS
Exploits0References14Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/08/02 12:0 a.m.31 views

Excessive Iteration

A maliciously-crafted image can cause excessive CPU consumption in decoding. A tiled image with a height of 0 and a very large width can cause excessive CPU consumption, despite the image size width height appearing to be zero...

6.5CVSS6.8AI score0.00805EPSS
Exploits0References4Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/08/02 12:0 a.m.31 views

Allocation of Resources Without Limits or Throttling

The TIFF decoder does not place a limit on the size of compressed tile data. A maliciously-crafted image can exploit this to cause a small image both in terms of pixel width/height, and encoded size to make the decoder decode large amounts of compressed data, consuming excessive memory and CPU...

6.5CVSS6.7AI score0.0086EPSS
Exploits0References4Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/07/21 12:0 a.m.57 views

Improper Access Control

KubePi is an opensource kubernetes management panel. A normal user has permission to create/update users, they can become admin by editing the isadmin value in the request. As a result any user may take administrative control of KubePi. This issue has been addressed in version 1.6.5. Users are...

9.1CVSS6.7AI score0.00615EPSS
Exploits1References2Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/07/21 12:0 a.m.62 views

Exposure of Sensitive Information to an Unauthorized Actor

KubePi is an opensource kubernetes management panel. The endpoint /kubepi/api/v1/users/search?pageNum=1&&pageSize=10 leak password hash of any user including admin. A sufficiently motivated attacker may be able to crack leaded password hashes. This issue has been addressed in version 1.6.5. Users...

7.5CVSS6.7AI score0.00681EPSS
Exploits1References2Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/07/21 12:0 a.m.81 views

Improper Access Control

KubePi is an opensource kubernetes management panel. A normal user has permission to create/update users, they can become admin by editing the isadmin value in the request. As a result any user may take administrative control of KubePi. This issue has been addressed in version 1.6.5. Users are...

9.1CVSS6.7AI score0.00615EPSS
Exploits1References2Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/07/21 12:0 a.m.79 views

Exposure of Sensitive Information to an Unauthorized Actor

KubePi is an opensource kubernetes management panel. The endpoint /kubepi/api/v1/users/search?pageNum=1&&pageSize=10 leak password hash of any user including admin. A sufficiently motivated attacker may be able to crack leaded password hashes. This issue has been addressed in version 1.6.5. Users...

7.5CVSS6.9AI score0.00681EPSS
Exploits1References2Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/07/18 12:0 a.m.95 views

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

1Panel is an open source Linux server operation and maintenance management panel. An OS command injection vulnerability exists in 1Panel firewall functionality. A specially-crafted HTTP request can lead to arbitrary command execution. An attacker can make an authenticated HTTP request to trigger...

8.8CVSS8.2AI score0.05354EPSS
Exploits1References5Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/07/17 12:0 a.m.43 views

Authorization Bypass Through User-Controlled Key

Authorization Bypass Through User-Controlled Key in GitHub repository alextselegidis/easyappointments prior to 1.5.0...

6.3CVSS7AI score0.00374EPSS
Exploits1References4Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/07/17 12:0 a.m.26 views

CasaOS contains weak JWT secrets

Unauthenticated attackers can craft arbitrary JWTs and access features that usually require authentication and execute arbitrary commands as root on CasaOS instances...

9.8CVSS9.9AI score0.05871EPSS
Exploits1References7Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/07/17 12:0 a.m.53 views

CasaOS Gateway vulnerable to incorrect identification of source IP addresses

Unauthenticated attackers can execute arbitrary commands as root on CasaOS instances...

9.8CVSS9.7AI score0.06363EPSS
Exploits1References7Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/07/16 12:0 a.m.55 views

Unrestricted Upload of File with Dangerous Type

Unrestricted Upload of File with Dangerous Type in GitHub repository admidio/admidio prior to 4.2.10...

7.2CVSS7AI score0.00835EPSS
Exploits1References4Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/07/14 12:0 a.m.21 views

SwiftTerm Code Injection vulnerability

Attacker could modify the window title via a certain character escape sequence and then insert it back to the command line in the user's terminal, e.g. when the user views a file containing the malicious sequence, which could allow the attacker to execute arbitrary commands...

7.8CVSS7.4AI score0.0043EPSS
Exploits0References5Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/07/05 12:0 a.m.44 views

URL Redirection to Untrusted Site ('Open Redirect')

Open Redirect in GitHub repository go-gitea/gitea prior to 1.19.4...

4.4CVSS7AI score0.00485EPSS
Exploits1References4Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/07/05 12:0 a.m.33 views

Improper Neutralization of Special Elements used in a Command ('Command Injection')

1Panel is an open source Linux server operation and maintenance management panel. Prior to version 1.3.6, an authenticated attacker can craft a malicious payload to achieve command injection when adding container repositories. The vulnerability has been fixed in v1.3.6...

8.8CVSS7.3AI score0.02313EPSS
Exploits1References4Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/07/05 12:0 a.m.25 views

Improper Neutralization of Special Elements used in a Command ('Command Injection')

1Panel is an open source Linux server operation and maintenance management panel. Prior to version 1.3.6, an authenticated attacker can craft a malicious payloads to achieve command injection when entering the container terminal. The vulnerability has been fixed in v1.3.6...

8.8CVSS7.3AI score0.02313EPSS
Exploits1References4Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/06/30 12:0 a.m.68 views

Insecure Default Initialization of Resource

Insecure defaults in open-source Temporal Server before version 1.20 on all platforms allows an attacker to craft a task token with access to a namespace other than the one specified in the request. Creation of this task token must be done outside of the normal Temporal server flow. It requires t...

3.6CVSS6.6AI score0.00166EPSS
Exploits0References3Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/06/23 12:0 a.m.19 views

Improper Neutralization of Formula Elements in a CSV File

Improper Neutralization of Formula Elements in a CSV File in GitHub repository admidio/admidio prior to 4.2.9...

7.8CVSS6.9AI score0.00462EPSS
Exploits1References4Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/06/23 12:0 a.m.20 views

Improper Access Control

Improper Access Control in GitHub repository admidio/admidio prior to 4.2.9...

6.4CVSS7AI score0.00416EPSS
Exploits1References4Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/06/23 12:0 a.m.43 views

Admidio Improper Access Control vulnerability

Improper Access Control in GitHub repository admidio/admidio prior to 4.2.9...

5.9CVSS7AI score0.00415EPSS
Exploits1References4Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/06/22 12:0 a.m.93 views

Flask-AppBuilder vulnerable to possible disclosure of sensitive information on user error

An authenticated malicious actor with Admin privileges, could by adding a special character on the add, edit User forms trigger a database error, this error is surfaced back to this actor on the UI. On certain database engines this error can include the entire user row including the pbkdf2:sha256...

2.7CVSS3.2AI score0.00676EPSS
Exploits0References8Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/06/20 12:0 a.m.33 views

Improper Input Validation

Vega is a decentralized trading platform that allows pseudo-anonymous trading of derivatives on a blockchain. Prior to version 0.71.6, a vulnerability exists that allows a malicious validator to trick the Vega network into re-processing past Ethereum events from Vega’s Ethereum bridge. For exampl...

6CVSS6.7AI score0.0049EPSS
Exploits1References5Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/06/16 12:0 a.m.14 views

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' in @apollo/server...

6.9AI score
Exploits0References3Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/06/15 12:0 a.m.42 views

Improper Restriction of XML External Entity Reference

A vulnerability, which was classified as problematic, has been found in Dromara HuTool up to 5.8.19. Affected by this issue is the function readBySax of the file XmlUtil.java of the component XML Parsing Module. The manipulation leads to xml external entity reference. The exploit has been disclos...

7.5CVSS7AI score0.00726EPSS
Exploits1References5Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/06/14 12:0 a.m.34 views

jsonij vulnerable to stack exhaustion

An issue was discovered jmarsden/jsonij through 0.5.2 allows attackers to cause a denial of service or other unspecified impacts via crafted object that uses cyclic dependencies...

7.5CVSS7.4AI score0.00845EPSS
Exploits1References4
GitLab Advisory Database
GitLab Advisory Database
added 2023/06/13 12:0 a.m.71 views

Incorrect Permission Assignment for Critical Resource

Hutool v5.8.17 and below was discovered to contain an information disclosure vulnerability via the File.createTempFile function at /core/io/FileUtil.java...

7.1CVSS6.6AI score0.00244EPSS
Exploits1References4Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/06/09 12:0 a.m.89 views

rails-ujs vulnerable to DOM Based Cross-site Scripting contenteditable HTML Elements

NOTE: rails-ujs is part of Rails/actionview since 5.1.0. There is a potential DOM based cross-site scripting issue in rails-ujs which leverages the Clipboard API to target HTML elements that are assigned the contenteditable attribute. This has the potential to occur when pasting malicious HTML...

6.3CVSS5.9AI score0.00643EPSS
Exploits0References10Affected Software1
GitLab Advisory Database
GitLab Advisory Database
added 2023/06/09 12:0 a.m.79 views

Denial of Service via reachable assertion

A grpc-swift server is vulnerable to a denial of service attack via a reachable assertion. This was due to incorrect logic when handling GOAWAY frames. The attack is low-effort: it takes very little resources to construct and send the required sequence of frames. The impact on availability is hig...

7.5CVSS6.5AI score0.01131EPSS
Exploits0References5Affected Software1
Total number of security vulnerabilities1518