Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
7.5
CVSSv2
CVE-2010-2447
Published: 07/11/2019 Updated: 12/11/2019
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 668
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Vulnerability Summary
gitolite prior to 1.4.1 does not filter src/ or hooks/ from path names.
Subscribe to Gitolite
Vulnerability Trend
Vulnerable Product
Search on Vulmon
Subscribe to Product
gitolite gitolite
References
CWE-20
https://www.openwall.com/lists/oss-security/2010/06/24/5
https://security-tracker.debian.org/tracker/CVE-2010-2447
https://github.com/sitaramc/gitolite/commit/5fd9328c1cd1e7c576b6530b3253061c68b159aa
https://github.com/sitaramc/gitolite/commit/1e06fea3b6959faeb72d8dca46cd4753ada48637
https://github.com/sitaramc/gitolite/releases/tag/v1.4.1
https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-40673
CVE-2024-36674
CVE-2024-27348
unspecified
CVE-2024-24919
CVE-2024-4870
malicious code
CVE-2024-2019
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started