{"id":"CVE-2024-56074","details":"gitingest before 9996a06 mishandles symbolic links that point outside of the base directory.","modified":"2026-03-14T12:40:24.633810Z","published":"2024-12-15T04:15:05.360Z","references":[{"type":"WEB","url":"https://github.com/cyclotruc/gitingest/blob/9996a06a94450497c1abb35997f5e6cbc9b571ff/src/ingest.py#L22-L30"},{"type":"WEB","url":"https://github.com/cyclotruc/gitingest/blob/9996a06a94450497c1abb35997f5e6cbc9b571ff/src/ingest.py#L99-L100"},{"type":"WEB","url":"https://gitingest.com/"},{"type":"FIX","url":"https://github.com/cyclotruc/gitingest/commit/9996a06a94450497c1abb35997f5e6cbc9b571ff"},{"type":"FIX","url":"https://github.com/cyclotruc/gitingest/pull/23"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/coderamp-labs/gitingest","events":[{"introduced":"0"},{"fixed":"9996a06a94450497c1abb35997f5e6cbc9b571ff"}]}],"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"0"},{"fixed":"9996a06"}]}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-56074.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:L"}]}