Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gitlab vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-4597
An issue has been discovered in GitLab EE affecting all versions from 16.7 prior to 16.9.7, all versions starting from 16.10 prior to 16.10.5, all versions starting from 16.11 prior to 16.11.2. An attacker could force a user with an active SAML session to approve an MR via CSRF.
NA
CVE-2024-4539
An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.4 before 16.9.7, starting from 16.10 before 16.10.5, and starting from 16.11 before 16.11.2 where abusing the API to filter branch and tags could lead to Denial of Service.
NA
CVE-2024-2651
An issue has been discovered in GitLab CE/EE affecting all versions prior to 16.9.7, all versions starting from 16.10 prior to 16.10.5, all versions starting from 16.11 prior to 16.11.2. It was possible for an malicious user to cause a denial of service using maliciously crafted ...
NA
CVE-2024-2454
An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.11 before 16.9.7, starting from 16.10 before 16.10.5, and starting from 16.11 before 16.11.2. The pins endpoint is susceptible to DoS through a crafted request.
NA
CVE-2023-6682
An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.9 before 16.9.7, starting from 16.10 before 16.10.5, and starting from 16.11 before 16.11.2. A problem with the processing logic for Discord Integrations Chat Messages can lead to a regular expre...
NA
CVE-2023-6688
An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.11 before 16.11.2. A problem with the processing logic for Google Chat Messages integration may lead to a regular expression DoS attack on the server.
NA
CVE_2022_40684
Official Writeup - Simple CTF 2.0 Created: April 23, 2024 7:50 PM Today I completed an other room on TryHackMe with a simple file-upload vulnerability which I built. I have tried for dancing around this whole CTF machine and getting a lot of walls of challenges in the end it co...
1 Github repository
NA
CVE-2024-4006
An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.7 prior to 16.9.6, all versions starting from 16.10 prior to 16.10.4, all versions starting from 16.11 prior to 16.11.1 where personal access scopes were not honored by GraphQL subscriptions
NA
CVE-2024-4024
An issue has been discovered in GitLab CE/EE affecting all versions starting from 7.8 prior to 16.9.6, all versions starting from 16.10 prior to 16.10.4, all versions starting from 16.11 prior to 16.11.1. Under certain conditions, an attacker with their Bitbucket account credenti...
NA
CVE-2024-2434
An issue has been discovered in GitLab affecting all versions of GitLab CE/EE 16.9 before 16.9.6, 16.10 before 16.10.4, and 16.11 before 16.11.1 where path traversal could lead to DoS and restricted file read.
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »