Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gitlab gitlab vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2019-15585
Improper authentication exists in < 12.3.2, < 12.2.6, and < 12.1.12 for GitLab Community Edition (CE) and Enterprise Edition (EE) in the GitLab SAML integration had a validation issue that permitted an malicious user to takeover another user's account.
Gitlab Gitlab
9.8
CVSSv3
CVE-2019-5464
A flawed DNS rebinding protection issue exists in GitLab CE/EE 10.2 and later in the `url_blocker.rb` which could result in SSRF where the library is utilized.
Gitlab Gitlab
9.8
CVSSv3
CVE-2019-19628
In GitLab EE 11.3 up to and including 12.5.3, 12.4.5, and 12.3.8, insufficient parameter sanitization for the Maven package registry could lead to privilege escalation and remote code execution vulnerabilities under certain conditions.
Gitlab Gitlab
9.8
CVSSv3
CVE-2019-19088
Gitlab Enterprise Edition (EE) 11.3 up to and including 12.4.2 allows Directory Traversal.
Gitlab Gitlab
9.8
CVSSv3
CVE-2019-15741
An issue exists in GitLab Omnibus 7.4 up to and including 12.2.1. An unsafe interaction with logrotate could result in a privilege escalation
Gitlab Omnibus
9.8
CVSSv3
CVE-2019-6960
An issue exists in GitLab Community and Enterprise Edition 9.x, 10.x, and 11.x prior to 11.5.8, 11.6.x prior to 11.6.6, and 11.7.x prior to 11.7.1. It has Incorrect Access Control. Access to the internal wiki is permitted when an external wiki service is enabled.
Gitlab Gitlab
9.8
CVSSv3
CVE-2019-14943
An issue exists in GitLab Community and Enterprise Edition 12.0 up to and including 12.1.4. It uses Hard-coded Credentials.
Gitlab Gitlab
9.8
CVSSv3
CVE-2019-9732
An issue exists in GitLab Community and Enterprise Edition 10.x (starting from 10.8) and 11.x prior to 11.6.10, 11.7.x prior to 11.7.6, and 11.8.x prior to 11.8.1. It has Incorrect Access Control.
Gitlab Gitlab
9.8
CVSSv3
CVE-2019-9485
An issue exists in GitLab Community and Enterprise Edition prior to 11.6.10, 11.7.x prior to 11.7.6, and 11.8.x prior to 11.8.1. It has Insecure Permissions.
Gitlab Gitlab
9.8
CVSSv3
CVE-2019-9218
An issue exists in GitLab Community and Enterprise Edition prior to 11.6.10, 11.7.x prior to 11.7.6, and 11.8.x prior to 11.8.1. It has Incorrect Access Control (issue 1 of 5).
Gitlab Gitlab
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »