Vulnerabilities > Rhodecode > Rhodecode Enterprise > 2.2.6

DATE CVE VULNERABILITY TITLE RISK
2015-02-16 CVE-2015-1613 Information Exposure vulnerability in Rhodecode Enterprise 2.2.6
RhodeCode before 2.2.7 allows remote authenticated users to obtain API keys and other sensitive information via the (1) update_repo, (2) get_locks, or (3) get_user_groups API method.
network
low complexity
rhodecode CWE-200
4.0
4.0
2015-02-16 CVE-2015-0260 Information Exposure vulnerability in multiple products
RhodeCode before 2.2.7 and Kallithea 0.1 allows remote authenticated users to obtain API keys and other sensitive information via the get_repo API method.
network
low complexity
kallithea rhodecode CWE-200
4.0
4.0