Show filters
4 Total Results
Displaying 1-4 of 4
Sort by:
Attacker Value
Unknown

CVE-2010-3906

Disclosure Date: December 17, 2010 (last updated October 04, 2023)
Cross-site scripting (XSS) vulnerability in Gitweb 1.7.3.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) f and (2) fp parameters.
0
0
Attacker Value
Unknown

CVE-2009-2108

Disclosure Date: June 18, 2009 (last updated October 04, 2023)
git-daemon in git 1.4.4.5 through 1.6.3 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a request containing extra unrecognized arguments.
0
0
Attacker Value
Unknown

CVE-2008-5516

Disclosure Date: January 20, 2009 (last updated October 04, 2023)
The web interface in git (gitweb) 1.5.x before 1.5.5 allows remote attackers to execute arbitrary commands via shell metacharacters related to git_search.
0
0
Attacker Value
Unknown

CVE-2008-5517

Disclosure Date: January 13, 2009 (last updated October 04, 2023)
The web interface in git (gitweb) 1.5.x before 1.5.6 allows remote attackers to execute arbitrary commands via shell metacharacters related to (1) git_snapshot and (2) git_object.
0
0