Exposição de GitLab
Development, Issue trackers331
score de exposição
761
sites usam
4
em exploração
24
críticos
CVEs
1.068 resultadosCVE-2023-1178MEDIUMAn issue has been discovered in GitLab CE/EE affecting all versions from 8.6 before 15.9.6, all versions starting from 15.10 before 15.10.5,EPSS 0.9%CVE-2021-22224HIGHA cross-site request forgery vulnerability in the GraphQL API in GitLab since version 13.12 and before versions 13.12.6 and 14.0.2 allowed aEPSS 0.9%CVE-2021-39897LOWImproper access control in GitLab CE/EE version 10.5 and above allowed subgroup members with inherited access to a project from a parent groEPSS 0.9%CVE-2021-39938LOWA vulnerable regular expression pattern in GitLab CE/EE since version 8.15 before 14.3.6, all versions starting from 14.4 before 14.4.4, allEPSS 0.9%CVE-2022-3740MEDIUMAn issue has been discovered in GitLab CE/EE affecting all versions starting from 12.9 prior to 15.3.5, 15.4 prior to 15.4.4, and 15.5 priorEPSS 0.9%CVE-2022-1100MEDIUMA potential DOS vulnerability was discovered in GitLab CE/EE affecting all versions from 13.1 prior to 14.7.7, 14.8.0 prior to 14.8.5, and 1EPSS 0.9%CVE-2021-22219MEDIUMAll versions of GitLab CE/EE starting from 9.5 before 13.10.5, all versions starting from 13.11 before 13.11.5, and all versions starting frEPSS 0.9%CVE-2022-0477MEDIUMAn issue has been discovered in GitLab affecting all versions starting from 11.9 before 14.5.4, all versions starting from 14.6.0 before 14.EPSS 0.9%CVE-2020-13345MEDIUMAn issue has been discovered in GitLab affecting all versions starting from 10.8. Reflected XSS on Multiple RoutesEPSS 0.9%CVE-2023-3932MEDIUMIncorrect User Management in GitLabEPSS 0.9%CVE-2020-13261MEDIUMAmazon EKS credentials disclosure in GitLab CE/EE 12.6 and later through 13.0.1 allows other administrators to view Amazon EKS credentials vEPSS 0.9%CVE-2021-39873MEDIUMIn all versions of GitLab CE/EE, there exists a content spoofing vulnerability which may be leveraged by attackers to trick users into visitEPSS 0.9%CVE-2022-2908MEDIUMA potential DoS vulnerability was discovered in Gitlab CE/EE versions starting from 10.7 before 15.1.5, all versions starting from 15.2 befoEPSS 0.9%CVE-2019-15582—An IDOR was discovered in < 12.3.2, < 12.2.6, and < 12.1.12 for GitLab Community Edition (CE) and Enterprise Edition (EE) that allowed a maiEPSS 0.9%CVE-2023-1621MEDIUMAn issue has been discovered in GitLab EE affecting all versions starting from 12.0 before 15.10.5, all versions starting from 15.11 before EPSS 0.9%CVE-2020-13262MEDIUMClient-Side code injection through Mermaid markup in GitLab CE/EE 12.9 and later through 13.0.1 allows a specially crafted Mermaid payload tEPSS 0.9%CVE-2021-22254LOWUnder very specific conditions a user could be impersonated using Gitlab shell. This vulnerability affects GitLab CE/EE 13.1 and later throuEPSS 0.9%CVE-2020-13342LOWAn issue has been discovered in GitLab affecting versions prior to 13.2.10, 13.3.7 and 13.4.2: Lack of Rate Limiting at Re-Sending ConfirmatEPSS 0.9%CVE-2022-1413MEDIUMMissing input masking in GitLab CE/EE affecting all versions starting from 1.0.2 before 14.8.6, all versions from 14.9.0 before 14.9.4, and EPSS 0.9%CVE-2021-39868MEDIUMIn all versions of GitLab CE/EE since version 8.12, an authenticated low-privileged malicious user may create a project with unlimited reposEPSS 0.9%
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →