Support Us — Your donation helps us keep running

Goal: 1000 CNY,Raised: 1000 CNY

100.0%
Donate Now

GitHub — Vulnerabilities & Security Advisories 131

Browse all 131 CVE security advisories affecting GitHub. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top 10 Products GitHub:Enterprise ServerGitHub Enterprise Servercmark-gfmcodeql-actionvscode-codeqlpaste-markdownview_componenttrilogycodeql-cli-binariesWebiness Inventorycopilot-cli
CVE IDTitleCVSSSeverityPaused
CVE-2024-1355 Command injection vulnerability was identified in GitHub Enterprise Server that allowed privilege escalation in the Mangement Console — Enterprise ServerCWE-20 9.1 Critical2024-02-13
CVE-2024-1354 Command injection vulnerability was identified in GitHub Enterprise Server that allowed privilege escalation in the Mangement Console — Enterprise ServerCWE-20 8.0 High2024-02-13
CVE-2024-1082 Path traversal vulnerability in GitHub Enterprise Server that allowed arbitrary file read with a specially crafted GitHub Pages artifact upload — Enterprise ServerCWE-22 6.3 Medium2024-02-13
CVE-2024-1084 GitHub Enterprise Server 安全漏洞 — Enterprise ServerCWE-79 6.5 Medium2024-02-13
CVE-2024-0507 Privilege Escalation by Code Injection in the Management Console in GitHub Enterprise Server — Enterprise ServerCWE-20 6.5 Medium2024-01-16
CVE-2024-0200 Unsafe Reflection in Github Enterprise Server leading to Command Injection — Enterprise ServerCWE-470 7.2 High2024-01-16
CVE-2023-6847 Improper Authentication in GitHub Enterprise Server leading to Authentication Bypass for Public Repository Data — Enterprise ServerCWE-287 7.5 High2023-12-21
CVE-2023-51380 Incorrect Authorization allows Read Access to Issue Comments in GitHub Enterprise Server — Enterprise ServerCWE-863 2.7 Low2023-12-21
CVE-2023-46648 Insufficient Entropy in GitHub Enterprise Server Management Console Invitation Token — Enterprise ServerCWE-331 8.3 High2023-12-21
CVE-2023-51379 Incorrect Authorization for Issue Comments in GitHub Enterprise Server — Enterprise ServerCWE-863 4.9 Medium2023-12-21
CVE-2023-46649 Race Condition allows Administrative Access on Organization Repositories — Enterprise ServerCWE-367 6.3 Medium2023-12-21
CVE-2023-6804 Improper Privilege Management allows for arbitrary workflows to be run — Enterprise ServerCWE-269 6.5 Medium2023-12-21
CVE-2023-6803 Race Condition allows Unauthorized Outside Collaborator — Enterprise ServerCWE-367 5.8 Medium2023-12-21
CVE-2023-6802 Sensitive Information in Log File in GitHub Enterprise Server — Enterprise ServerCWE-532 7.2 High2023-12-21
CVE-2023-46645 Path traversal in GitHub Enterprise Server leading to arbitrary file reading when building a GitHub Pages site — Enterprise ServerCWE-22 6.8 Medium2023-12-21
CVE-2023-6746 Sensitive Information in Log File in GitHub Enterprise Server — Enterprise ServerCWE-532 8.1 High2023-12-21
CVE-2023-6690 GitHub Enterprise Server 安全漏洞 — Enterprise ServerCWE-367 3.9 Low2023-12-21
CVE-2023-46647 Improper Privilege Management in GitHub Enterprise Server management console leads to privilege escalation — Enterprise ServerCWE-269 8.0 High2023-12-21
CVE-2023-46646 GitHub Enterprise Server 安全漏洞 — Enterprise ServerCWE-639 5.3 Medium2023-12-21
CVE-2023-23766 Incorrect comparison vulnerability in GitHub Enterprise Server leading to commit smuggling — Enterprise ServerCWE-697 4.5 Medium2023-09-22
CVE-2023-23763 Information disclosure in GitHub Enterprise Server leading to private repository leakage — Enterprise ServerCWE-200 5.3 Medium2023-09-01
CVE-2023-23765 Incorrect comparison vulnerability in GitHub Enterprise Server leading to commit smuggling — Enterprise ServerCWE-697 4.8 Medium2023-08-30
CVE-2023-23764 Incorrect comparison vulnerability in GitHub Enterprise Server leading to commit smuggling — Enterprise ServerCWE-697 4.8 Medium2023-07-27
CVE-2023-37463 Quadratic complexity bugs may lead to a denial of service — cmark-gfmCWE-400 6.4 Medium2023-07-13
CVE-2023-23762 Incorrect comparison vulnerability in GitHub Enterprise Server leading to commit smuggling — Enterprise ServerCWE-697 6.5 Medium2023-04-07
CVE-2023-23761 Improper authentication vulnerability in GitHub Enterprise Server leading to modification of secret gists — Enterprise ServerCWE-287 7.7 High2023-04-07
CVE-2023-24824 Quadratic complexity may lead to a denial of service in cmark-gfm — cmark-gfmCWE-400 5.3 Medium2023-03-31
CVE-2023-26485 Quadratic complexity may lead to a denial of service in cmark-gfm — cmark-gfmCWE-400 5.3 Medium2023-03-31
CVE-2023-23760 Path traversal in GitHub Enterprise Server leading to remote code execution — Enterprise ServerCWE-22 4.9 Medium2023-03-08
CVE-2022-46257 Information disclosure in GitHub Enterprise Server leading to unauthorized viewing of private repository names — GitHub Enterprise ServerCWE-200 6.5 -2023-03-07

This page lists every published CVE security advisory associated with GitHub. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.