Filter
AND
GitLabDirect Request ('Forced Browsing') in GitLab
4.3
EPSS
0.04%
First published (updated )
GitLabA business logic error in Project Import in GitLab CE/EE versions 14.9 prior to 14.9.2, 14.8 prior t…
3.5
First published (updated )
GitLabIn all versions of GitLab CE/EE starting version 14.0 before 14.3.6, all versions starting from 14.4…
4.4
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
GitLabAn issue has been discovered in GitLab affecting all versions starting from 14.0 before 14.0.9, all …
5.3
First published (updated )
GitLabAn unauthorized user was able to insert metadata when creating new issue on GitLab CE/EE 14.0 and la…
First published (updated )
GitLabUnder specialized conditions, GitLab may allow a user with an impersonation token to perform Git act…
6.6
First published (updated )
GitLabUnder specialized conditions, GitLab CE/EE versions starting 7.10 may allow existing GitLab users to…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
GitLabImproper authorization in the vulnerability report feature in GitLab EE affecting all versions since…
6.5
First published (updated )
GitLabImproper authorization in GitLab CE/EE affecting all versions since 13.0 allows guests in private pr…
4.3
First published (updated )
GitLabImproper authorization in GitLab CE/EE affecting all versions since 12.6 allowed guest users to crea…
5.5
First published (updated )
GitLabImproper authorization in GitLab CE/EE affecting all versions since 13.3 allowed users to view and d…
5.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
GitLabA verbose error message in GitLab EE affecting all versions since 12.2 could disclose the private em…
4.3
First published (updated )
GitLabImproper authorization on the pipelines page in GitLab CE/EE affecting all versions since 13.12 allo…
5.3
First published (updated )
GitLabA confusion between tag and branch names in GitLab CE/EE affecting all versions since 13.7 allowed a…
6.5
First published (updated )
GitLabImproper authorization in GitLab EE affecting all versions since 13.4 allowed a user who previously …
5.4
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
GitLabA vulnerability was discovered in GitLab versions before 14.0.2, 13.12.6, 13.11.6. GitLab Webhook fe…
7.7
First published (updated )
GitLabUnder very specific conditions a user could be impersonated using Gitlab shell. This vulnerability a…
4.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
GitLabImproper access control in GitLab EE versions 13.11.6, 13.12.6, and 14.0.2 allows users to be create…
4.3
First published (updated )
GitLabAn information disclosure vulnerability in GitLab EE versions 13.10 and later allowed a user to read…
4.3
First published (updated )
GitLabImproper code rendering while rendering merge requests could be exploited to submit malicious code. …
7.2
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.