Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gitlab gitlab vulnerabilities and exploits
(subscribe to this query)
5.3
CVSSv3
CVE-2022-3482
An improper access control issue in GitLab CE/EE affecting all versions from 11.3 before 15.3.5, 15.4 before 15.4.4, and 15.5 before 15.5.2 allowed an unauthorized user to see release names even when releases we set to be restricted to project members only
Gitlab Gitlab 15.6.0
Gitlab Gitlab
6.1
CVSSv3
CVE-2022-3513
An issue has been discovered in GitLab affecting all versions starting from 12.8 prior to 15.8.5, all versions starting from 15.9 prior to 15.9.4, all versions starting from 15.10 prior to 15.10.1. A specially crafted payload could lead to a reflected XSS on the client side which...
Gitlab Gitlab 15.10.0
Gitlab Gitlab
6.4
CVSSv3
CVE-2022-2497
An issue has been discovered in GitLab CE/EE affecting all versions starting from 12.6 prior to 15.0.5, all versions starting from 15.1 prior to 15.1.4, all versions starting from 15.2 prior to 15.2.1. A malicious developer could exfiltrate an integration's access token by m...
Gitlab Gitlab
Gitlab Gitlab 15.2
4.3
CVSSv3
CVE-2023-4630
An issue has been discovered in GitLab affecting all versions starting from 10.6 prior to 16.1.5, all versions starting from 16.2 prior to 16.2.5, all versions starting from 16.3 prior to 16.3.1 in which any user can read limited information about any project's imports.
Gitlab Gitlab 16.3.0
Gitlab Gitlab
7.5
CVSSv3
CVE-2023-4647
An issue has been discovered in GitLab affecting all versions starting from 15.2 prior to 16.1.5, all versions starting from 16.2 prior to 16.2.5, all versions starting from 16.3 prior to 16.3.1 in which the projects API pagination can be skipped, potentially leading to DoS on ce...
Gitlab Gitlab 16.3.0
Gitlab Gitlab
7.5
CVSSv3
CVE-2021-22200
An issue has been discovered in GitLab CE/EE affecting all versions starting with 12.6. Under a special condition it was possible to access data of an internal repository through a public project fork as an anonymous user.
Gitlab Gitlab
Gitlab Gitlab 13.10.0
9.8
CVSSv3
CVE-2021-22203
An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.7.9 prior to 13.8.7, all versions starting from 13.9 prior to 13.9.5, and all versions starting from 13.10 prior to 13.10.1. A specially crafted Wiki page allowed malicious users to read arbitrar...
Gitlab Gitlab
Gitlab Gitlab 13.10.0
6.5
CVSSv3
CVE-2023-3205
An issue has been discovered in GitLab affecting all versions starting from 15.11 prior to 16.1.5, all versions starting from 16.2 prior to 16.2.5, all versions starting from 16.3 prior to 16.3.1. An authenticated user could trigger a denial of service when importing or cloning m...
Gitlab Gitlab 16.3.0
Gitlab Gitlab
6.5
CVSSv3
CVE-2023-3210
An issue has been discovered in GitLab affecting all versions starting from 15.11 prior to 16.1.5, all versions starting from 16.2 prior to 16.2.5, all versions starting from 16.3 prior to 16.3.1. An authenticated user could trigger a denial of service when importing or cloning m...
Gitlab Gitlab 16.3.0
Gitlab Gitlab
5.3
CVSSv3
CVE-2022-4201
A blind SSRF in GitLab CE/EE affecting all from 11.3 before 15.4.6, 15.5 before 15.5.5, and 15.6 before 15.6.1 allows an malicious user to connect to local addresses when configuring a malicious GitLab Runner.
Gitlab Gitlab 15.6.0
Gitlab Gitlab
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
XXE
CVE-2024-34490
SQL injection
CVE-2024-34488
CVE-2024-4507
CVE-2023-7028
CVE-2024-23187
TCP
CVE-2024-4439
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »