Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gitlab gitlab vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-2307
A lack of cascading deletes in GitLab CE/EE affecting all versions starting from 13.0 prior to 15.0.5, all versions starting from 15.1 prior to 15.1.4, all versions starting from 15.2 prior to 15.2.1 allows a malicious Group Owner to retain a usable Group Access Token even after ...
Gitlab Gitlab
Gitlab Gitlab 15.2
NA
CVE-2022-2326
An issue has been discovered in GitLab CE/EE affecting all versions prior to 15.0.5, all versions starting from 15.1 prior to 15.1.4, all versions starting from 15.2 prior to 15.2.1. It may be possible to gain access to a private project through an email invite by using other use...
Gitlab Gitlab
Gitlab Gitlab 15.2
NA
CVE-2018-15472
An issue exists in GitLab Community and Enterprise Edition prior to 11.1.7, 11.2.x prior to 11.2.4, and 11.3.x prior to 11.3.1. The diff formatter using rouge can block for a long time in Sidekiq jobs without any timeout.
Gitlab Gitlab
Gitlab Gitlab 11.3.0
NA
CVE-2023-3906
An input validation issue in the asset proxy in GitLab EE, affecting all versions from 12.3 before 16.2.8, 16.3 before 16.3.5, and 16.4 before 16.4.1, allowed an authenticated malicious user to craft image urls which bypass the asset proxy.
Gitlab Gitlab
Gitlab Gitlab 16.4.0
NA
CVE-2023-3917
Denial of Service in pipelines affecting all versions of Gitlab EE and CE before 16.2.8, 16.3 before 16.3.5, and 16.4 before 16.4.1 allows malicious user to cause pipelines to fail.
Gitlab Gitlab
Gitlab Gitlab 16.4.0
NA
CVE-2023-3922
An issue has been discovered in GitLab affecting all versions starting from 8.15 prior to 16.2.8, all versions starting from 16.3 prior to 16.3.5, all versions starting from 16.4 prior to 16.4.1. It was possible to hijack some links and buttons on the GitLab UI to a malicious pag...
Gitlab Gitlab
Gitlab Gitlab 16.4.0
NA
CVE-2022-2531
An issue has been discovered in GitLab EE affecting all versions starting from 12.5 prior to 15.0.5, all versions starting from 15.1 prior to 15.1.4, all versions starting from 15.2 prior to 15.2.1. GitLab was not performing correct authentication on Grafana API under specific co...
Gitlab Gitlab
Gitlab Gitlab 15.2
NA
CVE-2018-17451
An issue exists in GitLab Community and Enterprise Edition prior to 11.1.7, 11.2.x prior to 11.2.4, and 11.3.x prior to 11.3.1. There is Cross Site Request Forgery (CSRF) in the Slack integration for issuing slash commands.
Gitlab Gitlab
Gitlab Gitlab 11.3.0
NA
CVE-2022-3375
An issue has been discovered in GitLab affecting all versions starting from 11.10 prior to 15.8.5, all versions starting from 15.9 prior to 15.9.4, all versions starting from 15.10 prior to 15.10.1. It was possible to disclose the branch names when attacker has a fork of a projec...
Gitlab Gitlab 15.10.0
Gitlab Gitlab
NA
CVE-2022-2499
An issue has been discovered in GitLab EE affecting all versions starting from 13.10 prior to 15.0.5, all versions starting from 15.1 prior to 15.1.4, all versions starting from 15.2 prior to 15.2.1. GitLab's Jira integration has an insecure direct object reference vulnerabi...
Gitlab Gitlab
Gitlab Gitlab 15.2
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
spoof
CVE-2024-34928
CVE-2024-5291
deserialization
CVE-2024-4471
CVE-2024-4956
CVE-2024-32002
CVE-2024-5227
unspecified
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »