GitLab GitLabAuthentication Bypass by Spoofing in GitLab
GitLab GitLabThe Ruby SAML library vulnerable to a SAML authentication bypass via Incorrect XPath selector
GitLab GitLabImproper Access Control in GitLab
GitLab GitLabImproper Access Control in GitLab
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
GitLab GitLabImproper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in GitLab
GitLab GitLabGitLab Community and Enterprise Editions Improper Access Control Vulnerability
GitLab GitLabIncorrect Ownership Assignment in GitLab
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
GitLab GitLabAn issue has been discovered in GitLab CE/EE affecting all versions starting from 15.4 before 15.9.7…
GitLab GitLabLack of sand-boxing of OpenAPI documents in GitLab CE/EE affecting all versions from 12.6 prior to 1…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
GitLab GitLabAn issue has been discovered in GitLab affecting all versions starting from 10.0 before 12.9.8, all …
GitLab GitLabOS Command Injection, Command Injection
GitLab GitLabOS Command Injection, Command Injection
GitLab GitLabAn account takeover issue has been discovered in GitLab EE affecting all versions starting from 11.1…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
GitLab GitLabA hardcoded password was set for accounts registered using an OmniAuth provider (e.g. OAuth, LDAP, S…
GitLab GitLabAn issue has been discovered in GitLab CE/EE affecting all versions starting from 12.10 before 14.6.…
GitLab GitLabIt was possible to bypass 2FA for LDAP users and access some specific pages with Basic Authenticatio…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
GitLab GitLabGitLab Community and Enterprise Editions Remote Code Execution Vulnerability
GitLab GitLabAn issue has been discovered in GitLab CE/EE affecting all versions starting from 13.9. A specially …
GitLab GitLabAn issue has been discovered in GitLab CE/EE affecting all versions starting from 13.7.9 before 13.8…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
GitLab GitLabA vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. GitLab OAuth en…
GitLab GitLabGitLab CE/EE version 13.3 prior to 13.3.4 was vulnerable to an OAuth authorization scope change with…
GitLab GitLabIn GitLab before 13.0.12, 13.1.6 and 13.2.3, it is possible to bypass E-mail verification which is r…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
GitLab GitLabGitLab 10.1 through 12.8.1 has Incorrect Access Control. A scenario was discovered in which a GitLab…
GitLab GitLabGitLab 12.7 through 12.8.1 has Insecure Permissions. Under certain conditions involving groups, proj…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
GitLab GitLabAn issue was discovered in GitLab Community and Enterprise Edition 6.8 through 11.11. Users could by…
GitLab GitLabGitLab 10.7 and later through 12.7.2 has Incorrect Access Control.
GitLab GitLabGitLab EE 8.9 and later through 12.7.2 has Insecure Permission
GitLab GitLabImproper authentication exists in < 12.3.2, < 12.2.6, and < 12.1.12 for GitLab Community Edition (CE…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
GitLab OmnibusAn issue was discovered in GitLab Omnibus 7.4 through 12.2.1. An unsafe interaction with logrotate c…
GitLab GitLabAn issue was discovered in GitLab Community and Enterprise Edition 9.x, 10.x, and 11.x before 11.5.8…
GitLab GitLabAn issue was discovered in GitLab Community and Enterprise Edition 12.0 through 12.1.4. It uses Hard…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.