Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gitpod gitpod vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-0957
An issue exists in Gitpod versions prior to release-2022.11.2.16. There is a Cross-Site WebSocket Hijacking (CSWSH) vulnerability that allows malicious users to make WebSocket connections to the Gitpod JSONRPC server using a victim’s credentials, because the Origin header i...
Gitpod Gitpod
5.8
CVSSv2
CVE-2021-35206
Gitpod prior to 0.6.0 allows unvalidated redirects.
Gitpod Gitpod
NA
CVE-2023-32766
Gitpod prior to 2022.11.3 allows XSS because redirection can occur for some protocols outside of the trusted set of three (vscode: vscode-insiders: jetbrains-gateway:).
Gitpod Gitpod
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started