Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gitlab gitlab 15.0.0 vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2022-1935
Incorrect authorization in GitLab EE affecting all versions from 12.0 prior to 14.9.5, all versions starting from 14.10 prior to 14.10.4, all versions starting from 15.0 prior to 15.0.1 allowed an attacker already in possession of a valid Project Trigger Token to misuse it from a...
Gitlab Gitlab
Gitlab Gitlab 15.0.0
6.5
CVSSv3
CVE-2022-1936
Incorrect authorization in GitLab EE affecting all versions from 12.0 prior to 14.9.5, all versions starting from 14.10 prior to 14.10.4, all versions starting from 15.0 prior to 15.0.1 allowed an attacker already in possession of a valid Project Deploy Token to misuse it from an...
Gitlab Gitlab
Gitlab Gitlab 15.0.0
5.4
CVSSv3
CVE-2022-1940
A Stored Cross-Site Scripting vulnerability in Jira integration in GitLab EE affecting all versions from 13.11 before 14.9.5, 14.10 before 14.10.4, and 15.0 before 15.0.1 allows an malicious user to execute arbitrary JavaScript code in GitLab on a victim's behalf via special...
Gitlab Gitlab
Gitlab Gitlab 15.0.0
7.1
CVSSv3
CVE-2022-1944
When the feature is configured, improper authorization in the Interactive Web Terminal in GitLab CE/EE affecting all versions from 11.3 before 14.9.5, 14.10 before 14.10.4, and 15.0 before 15.0.1 allows users with the Developer role to open terminals on other Developers' run...
Gitlab Gitlab
Gitlab Gitlab 15.0.0
8.8
CVSSv3
CVE-2022-1680
An account takeover issue has been discovered in GitLab EE affecting all versions starting from 11.10 prior to 14.9.5, all versions starting from 14.10 prior to 14.10.4, all versions starting from 15.0 prior to 15.0.1. When group SAML SSO is configured, the SCIM feature (availabl...
Gitlab Gitlab
Gitlab Gitlab 15.0.0
2.7
CVSSv3
CVE-2022-1783
An issue has been discovered in GitLab CE/EE affecting all versions starting from 14.3 prior to 14.9.5, all versions starting from 14.10 prior to 14.10.4, all versions starting from 15.0 prior to 15.0.1. It may be possible for malicious group maintainers to add new members to a p...
Gitlab Gitlab
Gitlab Gitlab 15.0.0
4.3
CVSSv3
CVE-2022-1821
An issue has been discovered in GitLab CE/EE affecting all versions starting from 10.8 prior to 14.9.5, all versions starting from 14.10 prior to 14.10.4, all versions starting from 15.0 prior to 15.0.1. It may be possible for a subgroup member to access the members list of their...
Gitlab Gitlab
Gitlab Gitlab 15.0.0
5.4
CVSSv3
CVE-2022-1948
An issue has been discovered in GitLab affecting all versions starting from 15.0 prior to 15.0.1. Missing validation of input used in quick actions allowed an malicious user to exploit XSS by injecting HTML in contact details.
Gitlab Gitlab 15.0.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48654
CVE-2024-2757
authentication bypass
CVE-2024-3194
CVE-2024-33640
CVE-2024-21111
dos
insecure direct object reference
CVE-2024-21345
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started