Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gitlab gitlab 15.0.0 vulnerabilities and exploits
(subscribe to this query)
4
CVSSv2
CVE-2022-1821
An issue has been discovered in GitLab CE/EE affecting all versions starting from 10.8 prior to 14.9.5, all versions starting from 14.10 prior to 14.10.4, all versions starting from 15.0 prior to 15.0.1. It may be possible for a subgroup member to access the members list of their...
Gitlab Gitlab
Gitlab Gitlab 15.0.0
6.5
CVSSv2
CVE-2022-1680
An account takeover issue has been discovered in GitLab EE affecting all versions starting from 11.10 prior to 14.9.5, all versions starting from 14.10 prior to 14.10.4, all versions starting from 15.0 prior to 15.0.1. When group SAML SSO is configured, the SCIM feature (availabl...
Gitlab Gitlab
Gitlab Gitlab 15.0.0
4
CVSSv2
CVE-2022-1783
An issue has been discovered in GitLab CE/EE affecting all versions starting from 14.3 prior to 14.9.5, all versions starting from 14.10 prior to 14.10.4, all versions starting from 15.0 prior to 15.0.1. It may be possible for malicious group maintainers to add new members to a p...
Gitlab Gitlab
Gitlab Gitlab 15.0.0
4
CVSSv2
CVE-2022-1935
Incorrect authorization in GitLab EE affecting all versions from 12.0 prior to 14.9.5, all versions starting from 14.10 prior to 14.10.4, all versions starting from 15.0 prior to 15.0.1 allowed an attacker already in possession of a valid Project Trigger Token to misuse it from a...
Gitlab Gitlab
Gitlab Gitlab 15.0.0
4
CVSSv2
CVE-2022-1936
Incorrect authorization in GitLab EE affecting all versions from 12.0 prior to 14.9.5, all versions starting from 14.10 prior to 14.10.4, all versions starting from 15.0 prior to 15.0.1 allowed an attacker already in possession of a valid Project Deploy Token to misuse it from an...
Gitlab Gitlab
Gitlab Gitlab 15.0.0
3.5
CVSSv2
CVE-2022-1940
A Stored Cross-Site Scripting vulnerability in Jira integration in GitLab EE affecting all versions from 13.11 before 14.9.5, 14.10 before 14.10.4, and 15.0 before 15.0.1 allows an malicious user to execute arbitrary JavaScript code in GitLab on a victim's behalf via special...
Gitlab Gitlab
Gitlab Gitlab 15.0.0
4.9
CVSSv2
CVE-2022-1944
When the feature is configured, improper authorization in the Interactive Web Terminal in GitLab CE/EE affecting all versions from 11.3 before 14.9.5, 14.10 before 14.10.4, and 15.0 before 15.0.1 allows users with the Developer role to open terminals on other Developers' run...
Gitlab Gitlab
Gitlab Gitlab 15.0.0
NA
CVE-2022-1948
An issue has been discovered in GitLab affecting all versions starting from 15.0 prior to 15.0.1. Missing validation of input used in quick actions allowed an malicious user to exploit XSS by injecting HTML in contact details.
Gitlab Gitlab 15.0.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4946
CVE-2024-30309
CVE-2024-4761
CVE-2024-30051
type confusion
memory leak
CVE-2024-30293
reflected XSS
CVE-2024-3126
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started