A vulnerability was found in automad up to 1.10.9 and classified as problematic. Rated low severity (CVSS 1.9), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.
XSS
PHP
Automad
NVD
GitHub
VulDB
CVSS 4.0
1.9
EPSS
0.1%
A race condition in GitHub Enterprise Server allowed an existing admin to maintain permissions on transferred repositories by making a GraphQL mutation to alter repository permissions during the. Rated low severity (CVSS 2.0), this vulnerability is remotely exploitable. No vendor patch available.
Information Disclosure
Enterprise Server
NVD
GitHub
CVSS 3.1
2.0
EPSS
0.3%