Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gitlab gitlab 1.1.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-5332
Patch in third party library Consul requires 'enable-script-checks' to be set to False. This was required to enable a patch by the vendor. Without this setting the patch could be bypassed. This only affects GitLab-EE.
Gitlab Gitlab
Gitlab Gitlab 16.4.0
Hashicorp Consul
Hashicorp Consul 1.1.0
1.9
CVSSv2
CVE-2020-0551
Load value injection in some Intel(R) Processors utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access. The list of affected products is provided in intel-sa-00334: https://www.intel.com/c...
Intel Core I7-6700k -
Intel Atom C2750 -
Intel Celeron N2840 -
Intel Xeon E5-2658 V2 -
Intel Core I7-4500u -
Intel Core I7-3632qm -
Intel Xeon E3-1240 V5 -
Intel Xeon D-1649n -
Intel Xeon D-1633n -
Intel Xeon D-1637 -
Intel Xeon D-1627 -
Intel Xeon D-1623n -
Intel Xeon D-1622 -
Intel Xeon D-1653n -
Intel Xeon D-1602 -
Intel Xeon D-2141i -
Intel Xeon D-2177nt -
Intel Xeon D-2161i -
Intel Xeon D-2143it -
Intel Xeon D-2146nt -
Intel Xeon D-2145nt -
Intel Xeon D-2123it -
17 Github repositories
2 Articles
6.5
CVSSv2
CVE-2013-4490
The SSH key upload feature (lib/gitlab_keys.rb) in gitlab-shell prior to 1.7.3, as used in GitLab 5.0 prior to 5.4.1 and 6.x prior to 6.2.3, allows remote authenticated users to execute arbitrary commands via shell metacharacters in the public key.
Gitlab Gitlab 6.0.0
Gitlab Gitlab 6.2.0
Gitlab Gitlab 5.2.0
Gitlab Gitlab 5.0.1
Gitlab Gitlab-shell
Gitlab Gitlab-shell 1.4.0
Gitlab Gitlab-shell 1.2.0
Gitlab Gitlab-shell 1.7.1
Gitlab Gitlab-shell 1.7.0
Gitlab Gitlab-shell 1.6.0
Gitlab Gitlab-shell 1.5.0
Gitlab Gitlab 6.2.1
Gitlab Gitlab 6.2.2
Gitlab Gitlab 5.4.0
Gitlab Gitlab 5.3.0
Gitlab Gitlab-shell 1.0.4
Gitlab Gitlab 6.1.0
Gitlab Gitlab 5.1.0
Gitlab Gitlab 5.0.0
Gitlab Gitlab-shell 1.3.0
Gitlab Gitlab-shell 1.1.0
1 EDB exploit
6.5
CVSSv2
CVE-2013-4546
The repository import feature in gitlab-shell prior to 1.7.4, as used in GitLab, allows remote authenticated users to execute arbitrary commands via the import URL.
Gitlab Gitlab 6.0.0
Gitlab Gitlab 5.1.0
Gitlab Gitlab 5.3.0
Gitlab Gitlab-shell 1.3.0
Gitlab Gitlab-shell 1.5.0
Gitlab Gitlab-shell
Gitlab Gitlab 5.4.1
Gitlab Gitlab 5.4.2
Gitlab Gitlab-shell 1.0.4
Gitlab Gitlab-shell 1.1.0
Gitlab Gitlab 6.2.0
Gitlab Gitlab 6.2.1
Gitlab Gitlab 6.2.2
Gitlab Gitlab 5.0.0
Gitlab Gitlab-shell 1.6.0
Gitlab Gitlab-shell 1.7.0
Gitlab Gitlab-shell 1.7.1
Gitlab Gitlab-shell 1.7.2
Gitlab Gitlab 6.1.0
Gitlab Gitlab 5.0.1
Gitlab Gitlab 5.2.0
Gitlab Gitlab 5.4.0
6.8
CVSSv2
CVE-2013-4580
GitLab prior to 5.4.2, Community Edition prior to 6.2.4, and Enterprise Edition prior to 6.2.1, when using a MySQL backend, allows remote malicious users to impersonate arbitrary users and bypass authentication via unspecified API calls.
Gitlab Gitlab
Gitlab Gitlab 3.0.1
Gitlab Gitlab 3.0.0
Gitlab Gitlab 2.9.1
Gitlab Gitlab 2.9.0
Gitlab Gitlab 1.2.0
Gitlab Gitlab 1.1.0
Gitlab Gitlab 1.0.2
Gitlab Gitlab 1.0.1
Gitlab Gitlab 5.3.0
Gitlab Gitlab 5.1.0
Gitlab Gitlab 4.0.0
Gitlab Gitlab 3.0.3
Gitlab Gitlab 2.8.0
Gitlab Gitlab 2.6.0
Gitlab Gitlab 2.0.0
Gitlab Gitlab 1.2.1
Gitlab Gitlab 1.0.0
Gitlab Gitlab 0.9.4
Gitlab Gitlab 5.0.1
Gitlab Gitlab 5.0.0
Gitlab Gitlab 4.2.0
6.8
CVSSv2
CVE-2013-4581
GitLab 5.0 prior to 5.4.2, Community Edition prior to 6.2.4, Enterprise Edition prior to 6.2.1 and gitlab-shell prior to 1.7.8 allows remote malicious users to execute arbitrary code via a crafted change using SSH.
Gitlab Gitlab 3.1.0
Gitlab Gitlab 3.0.3
Gitlab Gitlab 3.0.2
Gitlab Gitlab 3.0.1
Gitlab Gitlab 2.1.0
Gitlab Gitlab 2.0.0
Gitlab Gitlab 1.2.2
Gitlab Gitlab 1.2.1
Gitlab Gitlab 1.2.0
Gitlab Gitlab 6.1.0
Gitlab Gitlab 6.0.0
Gitlab Gitlab 5.4.1
Gitlab Gitlab 5.0.1
Gitlab Gitlab 4.2.0
Gitlab Gitlab 4.0.0
Gitlab Gitlab 3.0.0
Gitlab Gitlab 2.9.0
Gitlab Gitlab 2.3.1
Gitlab Gitlab 2.2.0
Gitlab Gitlab 1.0.2
Gitlab Gitlab 1.0.0
Gitlab Gitlab
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started