Exposição de GitLab

Development, Issue trackers

312

score de exposição

761

sites usam

4

em exploração

24

críticos

CVEs

1.055 resultados

CVE-2021-39946HIGHImproper neutralization of user input in GitLab CE/EE versions 14.3 to 14.3.6, 14.4 to 14.4.4, and 14.5 to 14.5.2 allowed an attacker to expEPSS 1.0%CVE-2020-13293MEDIUMIn GitLab before 13.0.12, 13.1.6 and 13.2.3 using a branch with a hexadecimal name could override an existing hash.EPSS 1.0%CVE-2022-1121MEDIUMA lack of appropriate timeouts in GitLab Pages included in GitLab CE/EE all versions prior to 14.7.7, 14.8 prior to 14.8.5, and 14.9 prior tEPSS 1.0%CVE-2023-2182MEDIUMAn issue has been discovered in GitLab EE affecting all versions starting from 15.10 before 15.10.5, all versions starting from 15.11 beforeEPSS 1.0%CVE-2020-13320MEDIUMAn issue has been discovered in GitLab before version 12.10.13 that allowed a project member with limited permissions to view the project seEPSS 1.0%CVE-2021-22187MEDIUMAn issue has been discovered in GitLab affecting all versions of Gitlab EE/CE before 13.6.7. A potential resource exhaustion issue that alloEPSS 1.0%CVE-2021-39914LOWA regular expression denial of service issue in GitLab versions 8.13 to 14.2.5, 14.3.0 to 14.3.3 and 14.4.0 could cause excessive usage of rEPSS 1.0%CVE-2021-22206MEDIUMAn issue has been discovered in GitLab affecting all versions starting from 11.6. Pull mirror credentials are exposed that allows other mainEPSS 1.0%CVE-2022-3482MEDIUMAn improper access control issue in GitLab CE/EE affecting all versions from 11.3 prior to 15.3.5, 15.4 prior to 15.4.4, and 15.5 prior to 1EPSS 1.0%CVE-2019-15579—An information disclosure exists in < 12.3.2, < 12.2.6, and < 12.1.12 for GitLab Community Edition (CE) and Enterprise Edition (EE) where thEPSS 1.0%CVE-2021-22216MEDIUMA denial of service vulnerability in all versions of GitLab CE/EE before 13.12.2, 13.11.5 or 13.10.5 allows an attacker to cause uncontrolleEPSS 1.0%CVE-2020-13297LOWA vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. When 2 factor authentication was enabled for groups, a EPSS 1.0%CVE-2021-39936LOWImproper access control in GitLab CE/EE affecting all versions starting from 10.7 before 14.3.6, all versions starting from 14.4 before 14.4EPSS 1.0%CVE-2021-22172MEDIUMImproper authorization in GitLab 12.8+ allows a guest user in a private project to view tag data that should be inaccessible on the releasesEPSS 1.0%CVE-2022-3478MEDIUMAn issue has been discovered in GitLab affecting all versions starting from 12.8 before 15.4.6, all versions starting from 15.5 before 15.5.EPSS 1.0%CVE-2019-15578—An information disclosure exists in < 12.3.2, < 12.2.6, and < 12.1.12 for GitLab Community Edition (CE) and Enterprise Edition (EE). The patEPSS 1.0%CVE-2020-26408MEDIUMA limited information disclosure vulnerability exists in Gitlab CE/EE from >= 12.2 to <13.4.7, >=13.5 to <13.5.5, and >=13.6 to <13.6.2 thatEPSS 1.0%CVE-2020-13263HIGHAn authorization issue relating to project maintainer impersonation was identified in GitLab EE 9.5 and later through 13.0.1 that could alloEPSS 1.0%CVE-2020-13285HIGHFor GitLab before 13.0.12, 13.1.6, 13.2.3 a cross-site scripting (XSS) vulnerability exists in the issue reference number tooltip.EPSS 1.0%CVE-2022-1188LOWAn issue has been discovered in GitLab CE/EE affecting all versions starting from 12.1 before 14.7.7, all versions starting from 14.8 beforeEPSS 1.0%

← anteriorpágina 11 / 53próxima →

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →