VYPR

Gource

by Gource

CVEs (1)

  • CVE-2010-2449MedNov 7, 2019
    risk 0.42cvss 6.5epss 0.02

    Gource through 0.26 logs to a predictable file name (/tmp/gource-$UID.tmp), enabling attackers to overwrite an arbitrary file via a symlink attack.