Our security policy is documented at https://sourcegraph.com/security.
This repository has been archived by the owner on Sep 30, 2024. It is now read-only.
Security: sourcegraph/sourcegraph-public-snapshot
Security
SECURITY.md
-
Arbitrary Command Execution in gitserver through customGitFetch featureGHSA-4qhq-4x4h-fxm8 published
Nov 22, 2022 by evictCritical -
Command Injection in gitserverGHSA-pfm3-23mh-6xjp published
Nov 22, 2022 by evictHigh -
Unauthorized overwriting of saved searches in SourcegraphGHSA-37qp-9jq6-f6mx published
Jul 26, 2022 by ferozsalamModerate -
Indirect Object Access in Sourcegraph Code MonitoringGHSA-5866-hhq9-9hpc published
Jul 26, 2022 by ferozsalamHigh -
Remote Code Execution in gitserverGHSA-r2m9-hfg8-4c38 published
May 3, 2022 by andreeleuterioHigh -
Side-channel attack in Sourcegraph Code MonitorsGHSA-xqv2-x6f2-w3pf published
Feb 15, 2022 by andreeleuterioHigh -
Remote Code Execution in gitserverGHSA-qcmp-fx72-q8q9 published
Feb 18, 2022 by andreeleuterioHigh -
Side-channel attack in SourcegraphGHSA-cpq7-hmvv-29w9 published
Dec 13, 2021 by andreeleuterioHigh -
Low risk information disclosure in SourcegraphGHSA-mq5p-477h-xgwv published
Aug 2, 2021 by andreeleuterioLow -
Open redirect vulnerabilityGHSA-mx43-r985-5h4m published
Apr 30, 2020 by nicksnyderHigh
Learn more about advisories related to sourcegraph/sourcegraph-public-snapshot in the GitHub Advisory Database