-
Notifications
You must be signed in to change notification settings - Fork 4.8k
Security: goharbor/harbor
Security Navigation
Security Advisories
View information about security vulnerabilities from this repository's maintainers.
-
Harbor fails to validate the user permissions when updating tag retention policiesGHSA-3637-v6vq-xqqw published
Aug 29, 2022 by qnetterHigh -
Harbor fails to validate the user permissions when updating tag immutability policiesGHSA-8c6p-v837-77f6 published
Aug 29, 2022 by qnetterModerate -
Harbor fails to validate the user permissions when updating a robot accountGHSA-xx9w-464f-7h6f published
Aug 29, 2022 by qnetterModerate -
catalog's registry v2 api exposed on unauthenticated path( CVE-2020-29662)GHSA-38r5-34mr-mvm7 published
Dec 17, 2020 by xaleeksLow -
Authenticated users can exploit an enumeration vulnerability in Harbor (CVE-2020-13794)GHSA-q9p8-33wc-h432 published
Sep 28, 2020 by michmikeLow -
Harbor is vulnerable to a limited Server-Side Request Forgery (SSRF) (CVE-2020-13788)GHSA-33p6-fx42-7rf5 published
Jul 17, 2020 by michmikeLow -
Unauthenticated users can exploit an enumeration vulnerability in Harbor (CVE-2019-19030)GHSA-q9x4-q76f-5h5j published
Jul 17, 2020 by michmikeLow -
SQL Injection via user-groups (CVE-2019-19029)GHSA-qcfv-8v29-469w published
Dec 3, 2019 by michmikeHigh -
SQL Injection via project quotas (CVE-2019-19026)GHSA-rh89-vvrg-fg64 published
Dec 3, 2019 by michmikeHigh -
Missing CSRF protection (CVE-2019-19025)GHSA-gcqm-v682-ccw6 published
Dec 3, 2019 by michmikeCritical