| Bug | Description |
|---|
| TEMP-0000000-1CC548 | Cross-site scripting (XSS) vulnerability in cgit's "txt2html" filter |
| CVE-2018-14912 | cgit_clone_objects in CGit before 1.2.1 has a directory traversal vuln ... |
| CVE-2016-2324 | Integer overflow in Git before 2.7.4 allows remote attackers to execut ... |
| CVE-2016-2315 | revision.c in git before 2.7.4 uses an incorrect integer data type, wh ... |
| CVE-2016-1901 | Integer overflow in the authenticate_post function in CGit before 0.12 ... |
| CVE-2016-1900 | CRLF injection vulnerability in the cgit_print_http_headers function i ... |
| CVE-2016-1899 | CRLF injection vulnerability in the ui-blob handler in CGit before 0.1 ... |
| CVE-2013-2117 | Directory traversal vulnerability in the cgit_parse_readme function in ... |
| CVE-2012-4548 | Argument injection vulnerability in syntax-highlighting.sh in cgit 9.0 ... |
| CVE-2012-4465 | Heap-based buffer overflow in the substr function in parsing.c in cgit ... |