Security Advisory

CVE-2012-4506

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2012-10-22 23:00:00

Last updated 2024-08-06 20:35:09

Assigner redhat

State PUBLISHED

Description

Directory traversal vulnerability in gitolite 3.x before 3.1, when wild card repositories and a pattern matching "../" are enabled, allows remote authenticated users to create arbitrary repositories and possibly perform other actions via a .. (dot dot) in a repository name.

← Browse all CVEs View on cve.org ↗