Exposição de GitLab
Development, Issue trackers331
score de exposição
761
sites usam
4
em exploração
24
críticos
CVEs
1.068 resultadosCVE-2021-22226MEDIUMUnder certain conditions, some users were able to push to protected branches that were restricted to deploy keys in GitLab CE/EE since versiEPSS 0.9%CVE-2021-39944HIGHAn issue has been discovered in GitLab CE/EE affecting all versions starting from 11.0 before 14.3.6, all versions starting from 14.4 beforeEPSS 0.9%CVE-2021-39901LOWIn all versions of GitLab CE/EE since version 11.10, an admin of a group can see the SCIM token of that group by visiting a specific endpoinEPSS 0.9%CVE-2021-22260HIGHA stored Cross-Site Scripting vulnerability in the DataDog integration in all versions of GitLab CE/EE starting from 13.7 before 14.0.9, allEPSS 0.9%CVE-2024-9164CRITICALMissing Authentication for Critical Function in GitLabEPSS 0.9%CVE-2022-0093LOWAn issue has been discovered affecting GitLab versions prior to 14.4.5, between 14.5.0 and 14.5.3, and between 14.6.0 and 14.6.1. GitLab allEPSS 0.9%CVE-2022-0371MEDIUMAn issue has been discovered in GitLab CE/EE affecting all versions starting from 11.4 before 14.5.4, all versions starting from 14.6 beforeEPSS 0.9%CVE-2021-22257MEDIUMAn issue has been discovered in GitLab affecting all versions starting from 14.0 before 14.0.9, all versions starting from 14.1 before 14.1.EPSS 0.9%CVE-2021-39945LOWImproper access control in the GitLab CE/EE API affecting all versions starting from 9.4 before 14.3.6, all versions starting from 14.4 befoEPSS 0.9%CVE-2021-39939MEDIUMAn uncontrolled resource consumption vulnerability in GitLab Runner affecting all versions starting from 13.7 before 14.3.6, all versions stEPSS 0.9%CVE-2022-0549MEDIUMAn issue has been discovered in GitLab CE/EE affecting all versions before 14.3.6, all versions starting from 14.4 before 14.4.4, all versioEPSS 0.9%CVE-2021-39934MEDIUMImproper access control allows any project member to retrieve the service desk email address in GitLab CE/EE versions starting 12.10 before EPSS 0.9%CVE-2021-39874MEDIUMIn all versions of GitLab CE/EE since version 11.0, the requirement to enforce 2FA is not honored when using git commands.EPSS 0.9%CVE-2017-0920—GitLab Community and Enterprise Editions before 10.1.6, 10.2.6, and 10.3.4 are vulnerable to an authorization bypass issue in the Projects::EPSS 0.9%CVE-2021-39871MEDIUMIn all versions of GitLab CE/EE since version 13.0, an instance that has the setting to disable Bitbucket Server import enabled is bypassed EPSS 0.9%CVE-2020-13349MEDIUMAn issue has been discovered in GitLab EE affecting all versions starting from 8.12. A regular expression related to a file path resulted inEPSS 0.9%CVE-2022-1193MEDIUMImproper access control in GitLab CE/EE versions 10.7 prior to 14.7.7, 14.8 prior to 14.8.5, and 14.9 prior to 14.9.2 allows a malicious actEPSS 0.9%CVE-2022-0390MEDIUMImproper access control in Gitlab CE/EE versions 12.7 to 14.5.4, 14.6 to 14.6.4, and 14.7 to 14.7.1 allowed for project non-members to retriEPSS 0.9%CVE-2017-0925—Gitlab Enterprise Edition version 10.1.0 is vulnerable to an insufficiently protected credential issue in the project service integration APEPSS 0.9%CVE-2022-3060HIGHImproper control of a resource identifier in Error Tracking in GitLab CE/EE affecting all versions from 12.7 allows an authenticated attackeEPSS 0.9%
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →