Github Enterprise Server Vulnerabilities
Github Github Enterprise Server vulnerabilities.
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
GitHub Enterprise Server Vulnerability: Information Disclosure through Phishing
CVE-2024-9539GithubGithub Enterprise Server4.3MEDIUMGitHub Enterprise Server XML Signature Wrapping Vulnerability
CVE-2024-6800GithubGithub Enterprise Serverπ°9.8CRITICALIncorrect Authorization allows read access to issues in GitHub Enterprise Server
CVE-2024-6337GithubGithub Enterprise Server6.5MEDIUMCross Site Request Forgery was identified in GitHub Enterprise Server that allowed write in a user owned repository
CVE-2024-5815GithubGithub Enterprise Server6.5MEDIUMSecurity misconfiguration was identified in GitHub Enterprise Server that allowed sensitive data exposure
CVE-2024-6336GithubGithub Enterprise Server5.3MEDIUMImproper authorization allows read access to issue content in GitHub Enterprise Server
CVE-2024-5817GithubGithub Enterprise Server6.5MEDIUMImproper authorization allows persistent access in GitHub Enterprise Server
CVE-2024-5816GithubGithub Enterprise Server5.3MEDIUMServer-Side Request Forgery Vulnerability in GitHub Enterprise Server
CVE-2024-5746GithubGithub Enterprise Server7.6HIGHImproper input validation vulnerability was identified in GitHub Enterprise Server that allowed privilege escalation in the Management Console
CVE-2024-2443GithubGithub Enterprise Server9.1CRITICALInformation disclosure in GitHub Enterprise Server leading to unauthorized viewing of private repository names
CVE-2022-46257GithubGithub Enterprise Server4.3MEDIUMPath traversal in GitHub Enterprise Server leading to arbitrary file reading when building a GitHub Pages site
CVE-2023-22380GitHubGitHub Enterprise Server6.5MEDIUMIncorrect authorization check in GitHub Enterprise Server leading to escalation of privileges in GraphQL API requests from GitHub Apps using scoped user-to-server tokens
CVE-2022-23739GithubGithub Enterprise Server9.8CRITICALIncorrect Authorization in GitHub Enterprise Server leads to Action Workflow modifications without Workflow Scope
CVE-2022-46258GithubGithub Enterprise Server6.5MEDIUMPath traversal in GitHub Enterprise Server leading to remote code execution in GitHub Pages
CVE-2022-46256GithubGithub Enterprise Server8.8HIGHIncorrect authorization in GitHub Enterprise Server token generation leading to full admin access
CVE-2022-23741GithubGithub Enterprise Server7.2HIGHImproper Limitation of a Pathname to a Restricted Directory in GitHub Enterprise Server leading to RCE
CVE-2022-46255GithubGithub Enterprise Server9.8CRITICALImproper Privilege Management in GitHub Enterprise Server leading to page creation and deletion
CVE-2022-23737GithubGithub Enterprise Server6.5MEDIUMImproper Neutralization of Argument Delimiters in a Command in GitHub Enterprise Server leading to Remote Code Execution
CVE-2022-23740GithubGithub Enterprise Server8.8HIGHIncomplete cache verification issue in GitHub Enterprise Server leading to exposure of private repo files
CVE-2022-23738GithubGithub Enterprise Server5.7MEDIUMDeserialization of Untrusted Data vulnerability in GitHub Enterprise Server leading to Remote Code Execution
CVE-2022-23734GithubGithub Enterprise Server8.8HIGHStored XSS vulnerability in GitHub Enterprise Server leading to injection of arbitrary attributes
CVE-2022-23733GithubGithub Enterprise Server5.4MEDIUMPath traversal in GitHub Enterprise Server management console leading to a bypass of CSRF protections
CVE-2022-23732GithubGithub Enterprise Server8.8HIGHImproper control flow in GitHub Enterprise Server hosted Pages leads to remote code execution
CVE-2021-41599GithubGithub Enterprise Server8.8HIGHUI misrepresentation of granted permissions in GitHub Enterprise Server leading to unauthorized access to user
CVE-2021-41598GithubGithub Enterprise Server8.8HIGHPath traversal in GitHub Enterprise Server hosted Pages leads to unauthorized file read access
CVE-2021-22870GithubGithub Enterprise Server6.5MEDIUM