Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gitlab dynamic application security testing analyzer vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv3
CVE-2023-0326
An issue has been discovered in GitLab DAST API scanner affecting all versions starting from 1.6.50 prior to 2.11.0, where Authorization headers was leaked in vulnerability report evidence.
Gitlab Dynamic Application Security Testing Analyzer
6.5
CVSSv3
CVE-2022-3767
Missing validation in DAST analyzer affecting all versions from 1.11.0 before 3.0.32, allows custom request headers to be sent with every request, regardless of the host.
Gitlab Dynamic Application Security Testing Analyzer
6.1
CVSSv3
CVE-2022-4317
An issue has been discovered in GitLab DAST analyzer affecting all versions starting from 1.47 prior to 3.0.51, which sends custom request headers in redirects.
Gitlab Dynamic Application Security Testing Analyzer
6.5
CVSSv3
CVE-2022-4315
An issue has been discovered in GitLab DAST analyzer affecting all versions starting from 2.0 prior to 3.0.55, which sends custom request headers with every request on the authentication page.
Gitlab Dynamic Application Security Testing Analyzer
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
denial of service
CVE-2024-27371
CVE-2024-20405
CVE-2024-31627
CVE-2024-31625
race condition
CVE-2024-4358
cross-site scripting
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started