Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
9.8
CVSSv3
CVE-2010-2447
Published: 07/11/2019 Updated: 12/11/2019
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 668
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Vulnerability Summary
gitolite prior to 1.4.1 does not filter src/ or hooks/ from path names.
Subscribe to Gitolite
Vulnerability Trend
Vulnerable Product
Search on Vulmon
Subscribe to Product
gitolite gitolite
References
CWE-20
https://www.openwall.com/lists/oss-security/2010/06/24/5
https://security-tracker.debian.org/tracker/CVE-2010-2447
https://github.com/sitaramc/gitolite/commit/5fd9328c1cd1e7c576b6530b3253061c68b159aa
https://github.com/sitaramc/gitolite/commit/1e06fea3b6959faeb72d8dca46cd4753ada48637
https://github.com/sitaramc/gitolite/releases/tag/v1.4.1
https://nvd.nist.gov
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started