Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gitlab gitlab 15.10.0 vulnerabilities and exploits
(subscribe to this query)
3.8
CVSSv3
CVE-2023-0838
An issue has been discovered in GitLab affecting versions starting from 15.1 prior to 15.8.5, 15.9 prior to 15.9.4, and 15.10 prior to 15.10.1. A maintainer could modify a webhook URL to leak masked webhook secrets by adding a new parameter to the url. This addresses an incomplet...
Gitlab Gitlab 15.10.0
Gitlab Gitlab
4.3
CVSSv3
CVE-2023-1071
An issue has been discovered in GitLab affecting all versions from 15.5 prior to 15.8.5, all versions starting from 15.9 prior to 15.9.4, all versions starting from 15.10 prior to 15.10.1. Due to improper permissions checks it was possible for an unauthorised user to remove an is...
Gitlab Gitlab 15.10.0
Gitlab Gitlab
4.9
CVSSv3
CVE-2023-1098
An information disclosure vulnerability has been discovered in GitLab EE/CE affecting all versions starting from 11.5 prior to 15.8.5, all versions starting from 15.9 prior to 15.9.4, all versions starting from 15.10 prior to 15.10.1 will allow an admin to leak password from repo...
Gitlab Gitlab 15.10.0
Gitlab Gitlab
5.3
CVSSv3
CVE-2023-1167
Improper authorization in Gitlab EE affecting all versions from 12.3.0 prior to 15.8.5, all versions starting from 15.9 prior to 15.9.4, all versions starting from 15.10 prior to 15.10.1 allows an unauthorized access to security reports in MR.
Gitlab Gitlab 15.10.0
Gitlab Gitlab
3.7
CVSSv3
CVE-2022-3375
An issue has been discovered in GitLab affecting all versions starting from 11.10 prior to 15.8.5, all versions starting from 15.9 prior to 15.9.4, all versions starting from 15.10 prior to 15.10.1. It was possible to disclose the branch names when attacker has a fork of a projec...
Gitlab Gitlab 15.10.0
Gitlab Gitlab
6.1
CVSSv3
CVE-2023-0523
An issue has been discovered in GitLab affecting all versions starting from 15.6 prior to 15.8.5, 15.9 prior to 15.9.4, and 15.10 prior to 15.10.1. An XSS was possible via a malicious email address for certain instances.
Gitlab Gitlab 15.10.0
Gitlab Gitlab
5.3
CVSSv3
CVE-2023-1787
An issue has been discovered in GitLab affecting all versions starting from 15.9 prior to 15.9.4, all versions starting from 15.10 prior to 15.10.1. A search timeout could be triggered if a specific HTML payload was used in the issue description.
Gitlab Gitlab 15.10.0
Gitlab Gitlab
5.3
CVSSv3
CVE-2022-4143
An issue has been discovered in GitLab affecting all versions starting from 15.7 prior to 15.8.5, from 15.9 prior to 15.9.4, and from 15.10 prior to 15.10.1 that allows for crafted, unapproved MRs to be introduced and merged without authorization
Gitlab Gitlab 15.10.0
Gitlab Gitlab
4.6
CVSSv3
CVE-2023-0450
An issue has been discovered in GitLab affecting all versions starting from 8.1 to 15.8.5, and from 15.9 to 15.9.4, and from 15.10 to 15.10.1. It was possible to add a branch with an ambiguous name that could be used to social engineer users.
Gitlab Gitlab 15.10.0
Gitlab Gitlab
9.8
CVSSv3
CVE-2023-1708
An issue was identified in GitLab CE/EE affecting all versions from 1.0 before 15.8.5, 15.9 before 15.9.4, and 15.10 before 15.10.1 where non-printable characters gets copied from clipboard, allowing unexpected commands to be executed on victim machine.
Gitlab Gitlab 15.10.0
Gitlab Gitlab
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3080
log injection
CVE-2024-6041
CVE-2024-37661
XML external entity
CVE-2024-0845
privilege escalation
CVE-2023-37057
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »