Vulnerabilities > Sourcegraph > Medium

DATE CVE VULNERABILITY TITLE RISK
2022-08-01 CVE-2022-31154 Incorrect Authorization vulnerability in Sourcegraph
Sourcegraph is an opensource code search and navigation engine.
network
low complexity
sourcegraph CWE-863
4.3
4.3
2022-08-01 CVE-2022-31155 Incorrect Authorization vulnerability in Sourcegraph
Sourcegraph is an opensource code search and navigation engine.
network
low complexity
sourcegraph CWE-863
4.3
4.3
2022-02-15 CVE-2022-23643 Information Exposure Through Discrepancy vulnerability in Sourcegraph
Sourcegraph is a code search and navigation engine.
network
low complexity
sourcegraph CWE-203
6.5
6.5
2021-12-13 CVE-2021-43823 Information Exposure Through Discrepancy vulnerability in Sourcegraph
Sourcegraph is a code search and navigation engine.
network
low complexity
sourcegraph CWE-203
6.5
6.5
2021-08-02 CVE-2021-32787 Unspecified vulnerability in Sourcegraph
Sourcegraph is a code search and navigation engine.
network
low complexity
sourcegraph
4.3
4.3
2020-04-30 CVE-2020-12283 Open Redirect vulnerability in Sourcegraph
Sourcegraph before 3.15.1 has a vulnerable authentication workflow because of improper validation in the SafeRedirectURL method in cmd/frontend/auth/redirect.go, such as for the //foo//example.com substring.
network
low complexity
sourcegraph CWE-601
6.1
6.1