Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
git git 1.0.4 vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2006-0477
Buffer overflow in git-checkout-index in GIT prior to 1.1.5 allows remote malicious users to execute arbitrary code via an index file with a long symbolic link.
Git Git 1.0.3
Git Git 1.0.4
Git Git 1.1.2
Git Git 1.1.3
Git Git 1.0.5
Git Git 1.0.6
Git Git 1.1.4
Git Git 1.0.0
Git Git 1.0.0b
Git Git 1.1.0
Git Git 1.1.1
Git Git 1.0.7
Git Git 1.0.8
668
VMScore
CVE-2008-5516
The web interface in git (gitweb) 1.5.x prior to 1.5.5 allows remote malicious users to execute arbitrary commands via shell metacharacters related to git_search.
Git Git 0.99.9j
Git Git 0.99.9k
Git Git 0.99.9l
Git Git 0.99.9m
Git Git 0.99.9n
Git Git 1.0.0
Git Git 1.0.0b
Git Git 1.0.3
Git Git 1.0.4
Git Git 1.0.5
Git Git 1.0.6
Git Git 1.0.7
Git Git 1.0.8
Git Git 1.1.1
Git Git 1.1.2
Git Git 1.1.3
Git Git 1.1.4
Git Git 1.1.5
Git Git 1.1.6
Git Git 1.2.0
Git Git 1.2.1
Git Git 1.2.2
435
VMScore
CVE-2010-3906
Cross-site scripting (XSS) vulnerability in Gitweb 1.7.3.3 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the (1) f and (2) fp parameters.
Git Git 1.4.2.4
Git Git 1.4.2
Git Git 1.1.3
Git Git 1.3.2
Git Git 1.0.7
Git Git 1.1.5
Git Git 1.0.3
Git Git 1.2.2
Git-scm Git 0.04
Git-scm Git 0.7.0
Git Git 1.5.2.1
Git Git 1.5.1.5
Git Git 1.4.2.2
Git Git 1.4.2.3
Git Git 1.1.4
Git Git 1.3.1
Git Git 1.1.0
Git Git 1.4.1.1
Git Git 1.0.6
Git Git 1.1.6
Git Git 1.2.3
Git-scm Git 0.5
1 EDB exploit
605
VMScore
CVE-2021-26543
The "gitDiff" function in Wayfair git-parse <=1.0.4 has a command injection vulnerability. Clients of the git-parse library are unlikely to be aware of this, so they might unwittingly write code that contains a vulnerability. The issue has been resolved in version 1....
Wayfair Git-parse
187
VMScore
CVE-2013-1425
ldap-git-backup prior to 1.0.4 exposes password hashes due to incorrect directory permissions.
Ldap Git Backup Project Ldap Git Backup
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
383
VMScore
CVE-2020-2237
A cross-site request forgery (CSRF) vulnerability in Jenkins Flaky Test Handler Plugin 1.0.4 and previous versions allows malicious users to rebuild a project at a previous git revision.
Jenkins Flaky Test Handler
NA
CVE-2023-26143
Versions of the package blamer prior to 1.0.4 are vulnerable to Arbitrary Argument Injection via the blameByFile() API. The library does not sanitize for user input or validate the given file path conforms to a specific schema, nor does it properly pass command-line flags to the ...
Blamer Project Blamer
383
VMScore
CVE-2012-0791
Multiple cross-site scripting (XSS) vulnerabilities in Horde IMP prior to 5.0.18 and Horde Groupware Webmail Edition prior to 4.0.6 allow remote malicious users to inject arbitrary web script or HTML via the (1) composeCache, (2) rtemode, or (3) filename_* parameters to the compo...
Horde Imp 2.2.7
Horde Dynamic Imp 1.1
Horde Imp 2.2.5
Horde Imp 4.0
Horde Dynamic Imp 1.1.6
Horde Imp 4.1.3
Horde Dynamic Imp 1.1.1
Horde Dynamic Imp 5.0.4
Horde Imp 4.1.6
Horde Imp 5.0.3
Horde Imp 3.1
Horde Imp 5.0.2
Horde Dynamic Imp 5.0.13
Horde Imp 4.3.6
Horde Dynamic Imp 1.0
Horde Dynamic Imp 5.0.5
Horde Imp 3.2.4
Horde Imp 3.1.2
Horde Imp 5.0
Horde Imp 4.3.3
Horde Imp 4.2
Horde Dynamic Imp
NA
CVE-2022-30630
Uncontrolled recursion in Glob in io/fs before Go 1.17.12 and Go 1.18.4 allows an malicious user to cause a panic due to stack exhaustion via a path which contains a large number of path separators.
Golang Go
NA
CVE-2022-1705
Acceptance of some invalid Transfer-Encoding headers in the HTTP/1 client in net/http before Go 1.17.12 and Go 1.18.4 allows HTTP request smuggling if combined with an intermediate server that also improperly fails to reject the header as invalid.
Golang Go
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »