Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gitlab gitlab 15.10.0 vulnerabilities and exploits
(subscribe to this query)
3.8
CVSSv3
CVE-2023-0838
An issue has been discovered in GitLab affecting versions starting from 15.1 prior to 15.8.5, 15.9 prior to 15.9.4, and 15.10 prior to 15.10.1. A maintainer could modify a webhook URL to leak masked webhook secrets by adding a new parameter to the url. This addresses an incomplet...
Gitlab Gitlab 15.10.0
Gitlab Gitlab
4.3
CVSSv3
CVE-2023-1417
An issue has been discovered in GitLab affecting all versions starting from 15.9 prior to 15.9.4, all versions starting from 15.10 prior to 15.10.1. It was possible for an unauthorised user to add child epics linked to victim's epic in an unrelated group.
Gitlab Gitlab 15.10.0
Gitlab Gitlab
3.7
CVSSv3
CVE-2022-3375
An issue has been discovered in GitLab affecting all versions starting from 11.10 prior to 15.8.5, all versions starting from 15.9 prior to 15.9.4, all versions starting from 15.10 prior to 15.10.1. It was possible to disclose the branch names when attacker has a fork of a projec...
Gitlab Gitlab 15.10.0
Gitlab Gitlab
4.6
CVSSv3
CVE-2023-0450
An issue has been discovered in GitLab affecting all versions starting from 8.1 to 15.8.5, and from 15.9 to 15.9.4, and from 15.10 to 15.10.1. It was possible to add a branch with an ambiguous name that could be used to social engineer users.
Gitlab Gitlab 15.10.0
Gitlab Gitlab
6.1
CVSSv3
CVE-2023-0523
An issue has been discovered in GitLab affecting all versions starting from 15.6 prior to 15.8.5, 15.9 prior to 15.9.4, and 15.10 prior to 15.10.1. An XSS was possible via a malicious email address for certain instances.
Gitlab Gitlab 15.10.0
Gitlab Gitlab
6.5
CVSSv3
CVE-2023-2181
An issue has been discovered in GitLab affecting all versions prior to 15.9.8, 15.10.0 prior to 15.10.7, and 15.11.0 prior to 15.11.3. A malicious developer could use a git feature called refs/replace to smuggle content into a merge request which would not be visible during revie...
Gitlab Gitlab
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site request forgery
CVE-2024-34351
CVE-2024-1076
CVE-2024-25522
CVE-2024-34547
CVE-2024-4644
unauthorized
remote
CVE-2024-4671
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2