Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An information disclosure via GET request server-side request forgery vulnerability was discovered with the Workplace Search Github Enterprise Server integration. Using this vulnerability, a malicious Workplace Search admin could use the GHES integration to view hosts that might not be publicly accessible.
CVSS Information
N/A
Vulnerability Type
服务端请求伪造(SSRF)
Vulnerability Title
GitHub Enterprise Server 代码问题漏洞
Vulnerability Description
GitHub Enterprise Server 是 (Github)开源的一个应用软件。提供一个将自己的GitHub实例设置为虚拟设备,从而提供可扩展,易于管理的平台。 Workplace Search Github Enterprise Server存在安全漏洞。攻击者可利用该漏洞使用GHES集成查看可能无法公开访问的主机。
CVSS Information
N/A
Vulnerability Type
N/A