Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gitlab gitlab 2.3.1 vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2021-28834
Kramdown prior to 2.3.1 does not restrict Rouge formatters to the Rouge::Formatters namespace, and thus arbitrary classes can be instantiated.
Kramdown Project Kramdown
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Fedoraproject Fedora 34
Debian Debian Linux 10.0
6.8
CVSSv2
CVE-2013-4580
GitLab prior to 5.4.2, Community Edition prior to 6.2.4, and Enterprise Edition prior to 6.2.1, when using a MySQL backend, allows remote malicious users to impersonate arbitrary users and bypass authentication via unspecified API calls.
Gitlab Gitlab
Gitlab Gitlab 3.0.1
Gitlab Gitlab 3.0.0
Gitlab Gitlab 2.9.1
Gitlab Gitlab 2.9.0
Gitlab Gitlab 1.2.0
Gitlab Gitlab 1.1.0
Gitlab Gitlab 1.0.2
Gitlab Gitlab 1.0.1
Gitlab Gitlab 5.3.0
Gitlab Gitlab 5.1.0
Gitlab Gitlab 4.0.0
Gitlab Gitlab 3.0.3
Gitlab Gitlab 2.8.0
Gitlab Gitlab 2.6.0
Gitlab Gitlab 2.0.0
Gitlab Gitlab 1.2.1
Gitlab Gitlab 1.0.0
Gitlab Gitlab 0.9.4
Gitlab Gitlab 5.0.1
Gitlab Gitlab 5.0.0
Gitlab Gitlab 4.2.0
6.8
CVSSv2
CVE-2013-4581
GitLab 5.0 prior to 5.4.2, Community Edition prior to 6.2.4, Enterprise Edition prior to 6.2.1 and gitlab-shell prior to 1.7.8 allows remote malicious users to execute arbitrary code via a crafted change using SSH.
Gitlab Gitlab 3.1.0
Gitlab Gitlab 3.0.3
Gitlab Gitlab 3.0.2
Gitlab Gitlab 3.0.1
Gitlab Gitlab 2.1.0
Gitlab Gitlab 2.0.0
Gitlab Gitlab 1.2.2
Gitlab Gitlab 1.2.1
Gitlab Gitlab 1.2.0
Gitlab Gitlab 6.1.0
Gitlab Gitlab 6.0.0
Gitlab Gitlab 5.4.1
Gitlab Gitlab 5.0.1
Gitlab Gitlab 4.2.0
Gitlab Gitlab 4.0.0
Gitlab Gitlab 3.0.0
Gitlab Gitlab 2.9.0
Gitlab Gitlab 2.3.1
Gitlab Gitlab 2.2.0
Gitlab Gitlab 1.0.2
Gitlab Gitlab 1.0.0
Gitlab Gitlab
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
malicious code
camera
CVE-2023-46694
CVE-2023-43847
CVE-2023-30311
CVE-2024-27842
CVE-2024-30165
arbitrary code
CVE-2024-21683
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started