Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gitlab gitlab 15.10.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-4143
An issue has been discovered in GitLab affecting all versions starting from 15.7 prior to 15.8.5, from 15.9 prior to 15.9.4, and from 15.10 prior to 15.10.1 that allows for crafted, unapproved MRs to be introduced and merged without authorization
Gitlab Gitlab 15.10.0
Gitlab Gitlab
NA
CVE-2023-2181
An issue has been discovered in GitLab affecting all versions prior to 15.9.8, 15.10.0 prior to 15.10.7, and 15.11.0 prior to 15.11.3. A malicious developer could use a git feature called refs/replace to smuggle content into a merge request which would not be visible during revie...
Gitlab Gitlab
NA
CVE-2023-1708
An issue was identified in GitLab CE/EE affecting all versions from 1.0 before 15.8.5, 15.9 before 15.9.4, and 15.10 before 15.10.1 where non-printable characters gets copied from clipboard, allowing unexpected commands to be executed on victim machine.
Gitlab Gitlab 15.10.0
Gitlab Gitlab
NA
CVE-2023-1710
A sensitive information disclosure vulnerability in GitLab affecting all versions from 15.0 before 15.8.5, 15.9 before 15.9.4 and 15.10 before 15.10.1 allows an malicious user to view the count of internal notes for a given issue.
Gitlab Gitlab 15.10.0
Gitlab Gitlab
NA
CVE-2023-1787
An issue has been discovered in GitLab affecting all versions starting from 15.9 prior to 15.9.4, all versions starting from 15.10 prior to 15.10.1. A search timeout could be triggered if a specific HTML payload was used in the issue description.
Gitlab Gitlab 15.10.0
Gitlab Gitlab
NA
CVE-2023-0838
An issue has been discovered in GitLab affecting versions starting from 15.1 prior to 15.8.5, 15.9 prior to 15.9.4, and 15.10 prior to 15.10.1. A maintainer could modify a webhook URL to leak masked webhook secrets by adding a new parameter to the url. This addresses an incomplet...
Gitlab Gitlab 15.10.0
Gitlab Gitlab
NA
CVE-2023-1167
Improper authorization in Gitlab EE affecting all versions from 12.3.0 prior to 15.8.5, all versions starting from 15.9 prior to 15.9.4, all versions starting from 15.10 prior to 15.10.1 allows an unauthorized access to security reports in MR.
Gitlab Gitlab 15.10.0
Gitlab Gitlab
NA
CVE-2023-1417
An issue has been discovered in GitLab affecting all versions starting from 15.9 prior to 15.9.4, all versions starting from 15.10 prior to 15.10.1. It was possible for an unauthorised user to add child epics linked to victim's epic in an unrelated group.
Gitlab Gitlab 15.10.0
Gitlab Gitlab
NA
CVE-2023-0450
An issue has been discovered in GitLab affecting all versions starting from 8.1 to 15.8.5, and from 15.9 to 15.9.4, and from 15.10 to 15.10.1. It was possible to add a branch with an ambiguous name that could be used to social engineer users.
Gitlab Gitlab 15.10.0
Gitlab Gitlab
NA
CVE-2023-1071
An issue has been discovered in GitLab affecting all versions from 15.5 prior to 15.8.5, all versions starting from 15.9 prior to 15.9.4, all versions starting from 15.10 prior to 15.10.1. Due to improper permissions checks it was possible for an unauthorised user to remove an is...
Gitlab Gitlab 15.10.0
Gitlab Gitlab
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »