← back
CVE-2015-0260

CVE-2015-0260

EPSS 1.2%
RhodeCode before 2.2.7 and Kallithea 0.1 allows remote authenticated users to obtain API keys and other sensitive information via the get_repo API method.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://seclists.org/oss-sec/2015/q1/505https://exchange.xforce.ibmcloud.com/vulnerabilities/100888https://kallithea-scm.org/security/cve-2015-0260.htmlhttps://rhodecode.com/blog/rhodecode-enterprise-security-release/http://www.securityfocus.com/bid/72573