Filter
AND

GitLab GitLabOS Command Injection, Command Injection

First published (updated )

GitLab GitLabXSS

First published (updated )

GitLab GitLabXSS

8.7
First published (updated )

GitLab GitLabXSS

8.7
First published (updated )

GitLab GitLabA vulnerability was discovered in GitLab versions before 14.0.2, 13.12.6, 13.11.6. GitLab Webhook fe…

7.7
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

GitLab GitLabAn issue has been discovered in GitLab CE/EE affecting all versions starting with 12.8. Under a spec…

7.5
First published (updated )

GitLab GitLabImproper code rendering while rendering merge requests could be exploited to submit malicious code. …

7.2
First published (updated )

GitLab GitLabCSRF

7.1
First published (updated )

GitLab GitLabXSS

First published (updated )

GitLab GitLabUnder specialized conditions, GitLab may allow a user with an impersonation token to perform Git act…

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

GitLab GitLabImproper authorization in the vulnerability report feature in GitLab EE affecting all versions since…

First published (updated )

GitLab GitLabA confusion between tag and branch names in GitLab CE/EE affecting all versions since 13.7 allowed a…

First published (updated )

GitLab GitLabAn issue has been discovered in GitLab affecting all versions before 13.11.6, all versions starting …

First published (updated )

GitLab GitLabUnder certain conditions, some users were able to push to protected branches that were restricted to…

First published (updated )

GitLab GitLabXSS, Code Injection

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

GitLab GitLabXSS

First published (updated )

GitLab GitLabXSS

First published (updated )

GitLab GitLabImproper authorization in GitLab CE/EE affecting all versions since 12.6 allowed guest users to crea…

First published (updated )

GitLab GitLabImproper authorization in GitLab CE/EE affecting all versions since 13.3 allowed users to view and d…

First published (updated )

GitLab GitLabImproper authorization in GitLab EE affecting all versions since 13.4 allowed a user who previously …

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

GitLab GitLabPath Traversal

First published (updated )

GitLab GitLabXSS

First published (updated )

GitLab GitLabImproper authorization on the pipelines page in GitLab CE/EE affecting all versions since 13.12 allo…

First published (updated )

GitLab GitLabAn issue has been discovered in GitLab affecting all versions starting from 14.0 before 14.0.9, all …

First published (updated )

GitLab GitLabUnder specialized conditions, GitLab CE/EE versions starting 7.10 may allow existing GitLab users to…

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

GitLab GitLabAn unauthorized user was able to insert metadata when creating new issue on GitLab CE/EE 14.0 and la…

First published (updated )

GitLab GitLabIn all versions of GitLab CE/EE starting version 14.0 before 14.3.6, all versions starting from 14.4…

First published (updated )

GitLab GitLabDirect Request ('Forced Browsing') in GitLab

EPSS
0.04%
First published (updated )

GitLab GitLabImproper authorization in GitLab CE/EE affecting all versions since 13.0 allows guests in private pr…

First published (updated )

GitLab GitLabA verbose error message in GitLab EE affecting all versions since 12.2 could disclose the private em…

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203