Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gitlab gitlab vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-4539
An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.4 before 16.9.7, starting from 16.10 before 16.10.5, and starting from 16.11 before 16.11.2 where abusing the API to filter branch and tags could lead to Denial of Service.
NA
CVE-2024-4597
An issue has been discovered in GitLab EE affecting all versions from 16.7 prior to 16.9.7, all versions starting from 16.10 prior to 16.10.5, all versions starting from 16.11 prior to 16.11.2. An attacker could force a user with an active SAML session to approve an MR via CSRF.
NA
CVE-2024-2651
An issue has been discovered in GitLab CE/EE affecting all versions prior to 16.9.7, all versions starting from 16.10 prior to 16.10.5, all versions starting from 16.11 prior to 16.11.2. It was possible for an malicious user to cause a denial of service using maliciously crafted ...
NA
CVE-2024-2454
An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.11 before 16.9.7, starting from 16.10 before 16.10.5, and starting from 16.11 before 16.11.2. The pins endpoint is susceptible to DoS through a crafted request.
NA
CVE-2023-6688
An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.11 before 16.11.2. A problem with the processing logic for Google Chat Messages integration may lead to a regular expression DoS attack on the server.
NA
CVE-2023-6682
An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.9 before 16.9.7, starting from 16.10 before 16.10.5, and starting from 16.11 before 16.11.2. A problem with the processing logic for Discord Integrations Chat Messages can lead to a regular expre...
NA
CVE_2022_40684
Official Writeup - Simple CTF 2.0 Created: April 23, 2024 7:50 PM Today I completed an other room on TryHackMe with a simple file-upload vulnerability which I built. I have tried for dancing around this whole CTF machine and getting a lot of walls of challenges in the end it co...
1 Github repository
NA
CVE-2024-4006
An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.7 prior to 16.9.6, all versions starting from 16.10 prior to 16.10.4, all versions starting from 16.11 prior to 16.11.1 where personal access scopes were not honored by GraphQL subscriptions
NA
CVE-2024-4024
An issue has been discovered in GitLab CE/EE affecting all versions starting from 7.8 prior to 16.9.6, all versions starting from 16.10 prior to 16.10.4, all versions starting from 16.11 prior to 16.11.1. Under certain conditions, an attacker with their Bitbucket account credenti...
NA
CVE-2024-2829
An issue has been discovered in GitLab CE/EE affecting all versions starting from 12.5 prior to 16.9.6, all versions starting from 16.10 prior to 16.10.4, all versions starting from 16.11 prior to 16.11.1. A crafted wildcard filter in FileFinder may lead to a denial of service.
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site scripting
CVE-2024-5158
XML external entity
CVE-2024-4262
CVE-2024-2036
CVE-2024-4985
CVE-2024-21791
remote attackers
CVE-2023-43208
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »