Github: >> Github >> 11.10.195 Security Vulnerabilities
GitHub Enterprise before 20120304 does not properly restrict the use of a hash to provide values for a model's attributes, which allows remote attackers to set the public_key[user_id] value via a modified URL for the public-key update form, related to a "mass assignment" vulnerability.
CVSS Score
7.5
EPSS Score
0.011
Published
2012-04-05