Exposure of GitLab
Development, Issue trackers329
exposure score
761
sites use
4
exploited
24
critical
CVEs
1,068 resultsCVE-2022-3483MEDIUMAn issue has been discovered in GitLab CE/EE affecting all versions starting from 12.1 before 15.3.5, all versions starting from 15.4 beforeEPSS 0.7%CVE-2022-2228MEDIUMInformation exposure in GitLab EE affecting all versions from 12.0 prior to 14.10.5, 15.0 prior to 15.0.4, and 15.1 prior to 15.1.1 allows aEPSS 0.6%CVE-2025-6454HIGHServer-Side Request Forgery (SSRF) in GitLabEPSS 0.6%CVE-2022-2904HIGHA cross-site scripting issue has been discovered in GitLab CE/EE affecting all versions starting from 15.2 before 15.2.5, all versions startEPSS 0.6%CVE-2023-5825MEDIUMLoop with Unreachable Exit Condition ('Infinite Loop') in GitLabEPSS 0.6%CVE-2023-6736MEDIUMInefficient Regular Expression Complexity in GitLabEPSS 0.6%CVE-2023-0523MEDIUMAn issue has been discovered in GitLab affecting all versions starting from 15.6 before 15.8.5, 15.9 before 15.9.4, and 15.10 before 15.10.1EPSS 0.6%CVE-2022-3288LOWA branch/tag name confusion in GitLab CE/EE affecting all versions prior to 15.2.5, 15.3 prior to 15.3.4, and 15.4 prior to 15.4.1 allows anEPSS 0.6%CVE-2022-4037MEDIUMAn issue has been discovered in GitLab CE/EE affecting all versions before 15.5.7, all versions starting from 15.6 before 15.6.4, all versioEPSS 0.6%CVE-2022-1981LOWAn issue has been discovered in GitLab EE affecting all versions starting from 12.2 prior to 14.10.5, 15.0 prior to 15.0.4, and 15.1 prior tEPSS 0.6%CVE-2022-4206MEDIUMA sensitive information leak issue has been discovered in all versions of DAST API scanner from 1.6.50 prior to 2.0.102, exposing the AuthorEPSS 0.6%CVE-2025-5996MEDIUMAllocation of Resources Without Limits or Throttling in GitLabEPSS 0.6%CVE-2022-2227LOWImproper access control in the runner jobs API in GitLab CE/EE affecting all versions prior to 14.10.5, 15.0 prior to 15.0.4, and 15.1 priorEPSS 0.6%CVE-2024-2874MEDIUMAllocation of Resources Without Limits or Throttling in GitLabEPSS 0.6%CVE-2022-2243MEDIUMAn access control vulnerability in GitLab EE/CE affecting all versions from 14.8 prior to 14.10.5, 15.0 prior to 15.0.4, and 15.1 prior to 1EPSS 0.6%CVE-2024-1066MEDIUMAllocation of Resources Without Limits or Throttling in GitLabEPSS 0.6%CVE-2020-13330MEDIUMAn issue has been discovered in GitLab affecting versions prior to 12.10.13. GitLab was vulnerable to a stored XSS in import the Bitbucket pEPSS 0.6%CVE-2022-2303MEDIUMAn issue has been discovered in GitLab CE/EE affecting all versions before 15.0.5, all versions starting from 15.1 before 15.1.4, all versioEPSS 0.6%CVE-2023-3413MEDIUMInsertion of Sensitive Information Into Sent Data in GitLabEPSS 0.6%CVE-2023-6051MEDIUMImproper Control of Generation of Code ('Code Injection') in GitLabEPSS 0.6%
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →