Filter
AND
AND
GitLabDirect Request ('Forced Browsing') in GitLab
4.3
EPSS
0.04%
First published (updated )
GitLabIn all versions of GitLab CE/EE starting version 14.0 before 14.3.6, all versions starting from 14.4…
4.4
First published (updated )
GitLabAn issue has been discovered in GitLab affecting all versions starting from 14.0 before 14.0.9, all …
5.3
First published (updated )
GitLabAn unauthorized user was able to insert metadata when creating new issue on GitLab CE/EE 14.0 and la…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
GitLabUnder specialized conditions, GitLab may allow a user with an impersonation token to perform Git act…
6.6
First published (updated )
GitLabUnder specialized conditions, GitLab CE/EE versions starting 7.10 may allow existing GitLab users to…
First published (updated )
GitLabImproper authorization in the vulnerability report feature in GitLab EE affecting all versions since…
6.5
First published (updated )
GitLabImproper authorization in GitLab CE/EE affecting all versions since 13.0 allows guests in private pr…
4.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
GitLabImproper authorization in GitLab CE/EE affecting all versions since 12.6 allowed guest users to crea…
5.5
First published (updated )
GitLabImproper authorization in GitLab CE/EE affecting all versions since 13.3 allowed users to view and d…
5.5
First published (updated )
GitLabA verbose error message in GitLab EE affecting all versions since 12.2 could disclose the private em…
4.3
First published (updated )
GitLabImproper authorization on the pipelines page in GitLab CE/EE affecting all versions since 13.12 allo…
5.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
GitLabA confusion between tag and branch names in GitLab CE/EE affecting all versions since 13.7 allowed a…
6.5
First published (updated )
GitLabImproper authorization in GitLab EE affecting all versions since 13.4 allowed a user who previously …
5.4
First published (updated )
GitLabUnder very specific conditions a user could be impersonated using Gitlab shell. This vulnerability a…
4.3
First published (updated )
GitLabImproper access control in GitLab EE versions 13.11.6, 13.12.6, and 14.0.2 allows users to be create…
4.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
GitLabAn information disclosure vulnerability in GitLab EE versions 13.10 and later allowed a user to read…
4.3
First published (updated )
GitLabA denial of service in user's profile page is found starting with GitLab CE/EE 8.0 that allows attac…
4.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
GitLabAn issue has been discovered in GitLab affecting all versions before 13.11.6, all versions starting …
6.5
First published (updated )
GitLabUnder certain conditions, some users were able to push to protected branches that were restricted to…
6.5
First published (updated )