Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gitlab vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-0120
An issue has been discovered in GitLab affecting all versions starting from 10.0 prior to 16.1.5, all versions starting from 16.2 prior to 16.2.5, all versions starting from 16.3 prior to 16.3.1. Due to improper permission validation it was possible to edit labels description by ...
Gitlab Gitlab 16.3.0
Gitlab Gitlab
NA
CVE-2023-3102
A sensitive information leak issue has been discovered in GitLab EE affecting all versions starting from 16.0 prior to 16.0.6, all versions starting from 16.1 prior to 16.1.1, which allows access to titles of private issue and MR.
Gitlab Gitlab
Gitlab Gitlab 16.1.0
NA
CVE-2023-3205
An issue has been discovered in GitLab affecting all versions starting from 15.11 prior to 16.1.5, all versions starting from 16.2 prior to 16.2.5, all versions starting from 16.3 prior to 16.3.1. An authenticated user could trigger a denial of service when importing or cloning m...
Gitlab Gitlab 16.3.0
Gitlab Gitlab
NA
CVE-2023-3210
An issue has been discovered in GitLab affecting all versions starting from 15.11 prior to 16.1.5, all versions starting from 16.2 prior to 16.2.5, all versions starting from 16.3 prior to 16.3.1. An authenticated user could trigger a denial of service when importing or cloning m...
Gitlab Gitlab 16.3.0
Gitlab Gitlab
NA
CVE-2022-2826
An issue has been discovered in GitLab affecting all versions starting from 10.0 prior to 12.9.8, all versions starting from 12.10 prior to 12.10.7, all versions starting from 13.0 prior to 13.0.1. TODO
Gitlab Gitlab
Gitlab Gitlab 13.0.0
5
CVSSv2
CVE-2022-2229
An improper authorization issue in GitLab CE/EE affecting all versions from 13.7 before 14.10.5, 15.0 before 15.0.4, and 15.1 before 15.1.1 allows an malicious user to extract the value of an unprotected variable they know the name of in public projects or private projects they...
Gitlab Gitlab 15.1.0
Gitlab Gitlab
3.5
CVSSv2
CVE-2022-2230
A Stored Cross-Site Scripting vulnerability in the project settings page in GitLab CE/EE affecting all versions from 14.4 before 14.10.5, 15.0 before 15.0.4, and 15.1 before 15.1.1, allows an malicious user to execute arbitrary JavaScript code in GitLab on a victim's behalf.
Gitlab Gitlab 15.1.0
Gitlab Gitlab
3.5
CVSSv2
CVE-2022-2235
Insufficient sanitization in GitLab EE's external issue tracker affecting all versions from 14.5 before 14.10.5, 15.0 before 15.0.4, and 15.1 before 15.1.1 allows an malicious user to perform cross-site scripting when a victim clicks on a maliciously crafted ZenTao link
Gitlab Gitlab 15.1.0
Gitlab Gitlab
4
CVSSv2
CVE-2022-2243
An access control vulnerability in GitLab EE/CE affecting all versions from 14.8 before 14.10.5, 15.0 before 15.0.4, and 15.1 before 15.1.1, allows authenticated users to enumerate issues in non-linked sentry projects.
Gitlab Gitlab 15.1.0
Gitlab Gitlab
4
CVSSv2
CVE-2022-2244
An improper authorization vulnerability in GitLab EE/CE affecting all versions from 14.8 before 14.10.5, 15.0 before 15.0.4, and 15.1 before 15.1.1, allows project memebers with reporter role to manage issues in project's error tracking feature.
Gitlab Gitlab 15.1.0
Gitlab Gitlab
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »