Every CVE whose affected-product data names Lars Hjemli Cgit, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2012-4465 — CVSS 6.5 (medium): Heap-based buffer overflow in the substr function in parsing.c in cgit 0.9.0.3 and earlier allows remote authenticated users to cause a…
CVE-2012-4548 — CVSS 6.0 (medium): Argument injection vulnerability in syntax-highlighting.sh in cgit 9.0.3 and earlier allows remote authenticated users with permissions to…
CVE-2011-1027 — CVSS 5.0 (medium): Off-by-one error in the convert_query_hexchar function in html.c in cgit.cgi in cgit before 0.8.3.5 allows remote attackers to cause a…
CVE-2013-2117 — CVSS 4.3 (medium): Directory traversal vulnerability in the cgit_parse_readme function in ui-summary.c in cgit before 0.9.2, when a readme file is set to a…
CVE-2011-2711 — CVSS 3.5 (low): Cross-site scripting (XSS) vulnerability in the print_fileinfo function in ui-diff.c in cgit 0.9.0.2 and earlier allows remote…