Adrian Schröter

2 exploits Active since Aug 2017
CVE-2011-0469 WRITEUP CRITICAL WRITEUP
openSUSE open build service 2.1 - Code Injection
Code injection in openSUSE when running some source services used in the open build service 2.1 before March 11 2011.
CVSS 9.8
CVE-2013-3703 WRITEUP HIGH WRITEUP
Open Build Service 2.4.0-2.4.3 - Authenticated Missing Authorization in API Controller
The controller of the Open Build Service API prior to version 2.4.4 is missing a write permission check, allowing an authenticated attacker to add or remove user roles from packages and/or project meta data.
CVSS 8.8