line/centraldogma

line/centraldogma

Releases245

Frequency1 week 5 days

Last Release about 1 month ago

Stars663

Highly-available version-controlled service configuration repository based on Git, ZooKeeper and HTTP/2

Log in to subscribe

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2025-11222 ↗	Dec 4, 2025Thursday, 4 December 2025, 13:15	6.1 MEDIUM	—
Central Dogma versions before 0.78.0 contain an Open Redirect vulnerability that allows attackers to redirect users to untrusted sites via specially crafted URLs, potentially facilitating phishing attacks and credential theft.
CVE-2024-1143 ↗	Feb 2, 2024Friday, 2 February 2024, 06:15	9.3 CRITICAL	—
Central Dogma versions prior to 0.64.1 is vulnerable to Cross-Site Scripting (XSS), which could allow for the leakage of user sessions and subsequent authentication bypass.
CVE-2021-38388 ↗	Sep 8, 2021Wednesday, 8 September 2021, 18:15	8.8 HIGH	6.5 MEDIUM
Central Dogma allows privilege escalation with mirroring to the internal dogma repository that has a file managing the authorization of the project.
CVE-2019-6002 ↗	Jul 26, 2019Friday, 26 July 2019, 14:15	6.1 MEDIUM	4.3 MEDIUM
Cross-site scripting vulnerability in Central Dogma 0.17.0 to 0.40.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.