Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2012-4506

Опубликовано: 22 окт. 2012
Источник: nvd
CVSS2: 4.6
EPSS Низкий

Описание

Directory traversal vulnerability in gitolite 3.x before 3.1, when wild card repositories and a pattern matching "../" are enabled, allows remote authenticated users to create arbitrary repositories and possibly perform other actions via a .. (dot dot) in a repository name.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:gitolite:gitolite:3.0:*:*:*:*:*:*:*
cpe:2.3:a:gitolite:gitolite:3.02:*:*:*:*:*:*:*
cpe:2.3:a:gitolite:gitolite:3.03:*:*:*:*:*:*:*
cpe:2.3:a:gitolite:gitolite:3.04:*:*:*:*:*:*:*
cpe:2.3:a:sitaram_chamarty:gitolite:3.01:*:*:*:*:*:*:*

EPSS

Процентиль: 68%
0.00557
Низкий

4.6 Medium

CVSS2

Дефекты

CWE-22

Связанные уязвимости

ubuntu логотип

CVE-2012-4506

ubuntu
больше 13 лет назад

Directory traversal vulnerability in gitolite 3.x before 3.1, when wild card repositories and a pattern matching "../" are enabled, allows remote authenticated users to create arbitrary repositories and possibly perform other actions via a .. (dot dot) in a repository name.

debian логотип

CVE-2012-4506

debian
больше 13 лет назад

Directory traversal vulnerability in gitolite 3.x before 3.1, when wil ...

github логотип

GHSA-v55m-w3r7-pwm6

github
больше 3 лет назад

Directory traversal vulnerability in gitolite 3.x before 3.1, when wild card repositories and a pattern matching "../" are enabled, allows remote authenticated users to create arbitrary repositories and possibly perform other actions via a .. (dot dot) in a repository name.

EPSS

Процентиль: 68%
0.00557
Низкий

4.6 Medium

CVSS2

Дефекты

CWE-22