Sitaram Chamarty » Gitolite : Security Vulnerabilities, CVEs,
Directory traversal vulnerability in gitolite 3.x before 3.1, when wild card repositories and a pattern matching "../" are enabled, allows remote authenticated users to create arbitrary repositories and possibly perform other actions via a .. (dot dot) in a repository name.
Max CVSS
4.6
EPSS Score
0.54%
Published
2012-10-22
Updated
2019-09-09
1 vulnerabilities found