Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gitlab gitlab 2.0.0 vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2018-8971
The Auth0 integration in GitLab prior to 10.3.9, 10.4.x prior to 10.4.6, and 10.5.x prior to 10.5.6 has an incorrect omniauth-auth0 configuration, leading to signing in unintended users.
Gitlab Gitlab
Debian Debian Linux 9.0
605
VMScore
CVE-2013-4580
GitLab prior to 5.4.2, Community Edition prior to 6.2.4, and Enterprise Edition prior to 6.2.1, when using a MySQL backend, allows remote malicious users to impersonate arbitrary users and bypass authentication via unspecified API calls.
Gitlab Gitlab
Gitlab Gitlab 3.0.1
Gitlab Gitlab 3.0.0
Gitlab Gitlab 2.9.1
Gitlab Gitlab 2.9.0
Gitlab Gitlab 1.2.0
Gitlab Gitlab 1.1.0
Gitlab Gitlab 1.0.2
Gitlab Gitlab 1.0.1
Gitlab Gitlab 5.3.0
Gitlab Gitlab 5.1.0
Gitlab Gitlab 4.0.0
Gitlab Gitlab 3.0.3
Gitlab Gitlab 2.8.0
Gitlab Gitlab 2.6.0
Gitlab Gitlab 2.0.0
Gitlab Gitlab 1.2.1
Gitlab Gitlab 1.0.0
Gitlab Gitlab 0.9.4
Gitlab Gitlab 5.0.1
Gitlab Gitlab 5.0.0
Gitlab Gitlab 4.2.0
605
VMScore
CVE-2013-4581
GitLab 5.0 prior to 5.4.2, Community Edition prior to 6.2.4, Enterprise Edition prior to 6.2.1 and gitlab-shell prior to 1.7.8 allows remote malicious users to execute arbitrary code via a crafted change using SSH.
Gitlab Gitlab 3.1.0
Gitlab Gitlab 3.0.3
Gitlab Gitlab 3.0.2
Gitlab Gitlab 3.0.1
Gitlab Gitlab 2.1.0
Gitlab Gitlab 2.0.0
Gitlab Gitlab 1.2.2
Gitlab Gitlab 1.2.1
Gitlab Gitlab 1.2.0
Gitlab Gitlab 6.1.0
Gitlab Gitlab 6.0.0
Gitlab Gitlab 5.4.1
Gitlab Gitlab 5.0.1
Gitlab Gitlab 4.2.0
Gitlab Gitlab 4.0.0
Gitlab Gitlab 3.0.0
Gitlab Gitlab 2.9.0
Gitlab Gitlab 2.3.1
Gitlab Gitlab 2.2.0
Gitlab Gitlab 1.0.2
Gitlab Gitlab 1.0.0
Gitlab Gitlab
356
VMScore
CVE-2017-0920
GitLab Community and Enterprise Editions prior to 10.1.6, 10.2.6, and 10.3.4 are vulnerable to an authorization bypass issue in the Projects::MergeRequests::CreationsController component resulting in an malicious user to see every project name and their respective namespace on a ...
Gitlab Gitlab
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started