Git 0.04

View All Versions

Related Vulnerabilities

Vulnerability Severity Score Release Date Summary
CVE-2008-5516 7.5 Jan. 20, 2009

The web interface in git (gitweb) 1.5.x before 1.5.5 allows remote attackers to execute arbitrary commands via shell metacharacters related to git_search.

CVE-2010-2542 7.5 Aug. 11, 2010

Stack-based buffer overflow in the is_git_directory function in setup.c in Git before allows local users to gain privileges via a long gitdir: field in a .git file in a working copy.

CVE-2010-3906 4.3 Dec. 17, 2010

Cross-site scripting (XSS) vulnerability in Gitweb and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) f and (2) fp parameters.