漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
GitProxy bypasses approvals when pushing multiple branches
Vulnerability Description
GitProxy is an application that stands between developers and a Git remote endpoint (e.g., github.com). Versions 1.19.1 and below allow users to push to remote repositories while bypassing policies and explicit approvals. Since checks and plugins are skipped, code containing secrets or unwanted changes could be pushed into a repository. This is fixed in version 1.19.2.
CVSS Information
N/A
Vulnerability Type
授权机制不正确
Vulnerability Title
The Fintech Open Source Foundation GitProxy 安全漏洞
Vulnerability Description
The Fintech Open Source Foundation GitProxy是The Fintech Open Source Foundation基金会的一个在Git之上部署自定义推送保护和策略。 The Fintech Open Source Foundation GitProxy 1.19.1及之前版本存在安全漏洞,该漏洞源于允许用户绕过策略和显式批准推送代码。
CVSS Information
N/A
Vulnerability Type
N/A