Lucene search
+L

GitLab CE/EE server-side request forgery vulnerability (CNVD-2019-23579)

🗓️ 11 Jul 2019 00:00:00Reported by China National Vulnerability DatabaseType 
cnvd
 cnvd
🔗 www.cnvd.org.cn👁 3 Views

GitLab server side forgery vulnerability in webhooks could be used for SSRF.

Related
Detection
Refs
ReporterTitlePublishedViews
Family
FreeBSD
Gitlab -- Multiple vulnerabilities
28 Nov 201800:00
freebsd
CVE
CVE-2018-19571
10 Jul 201916:01
cve
Cvelist
CVE-2018-19571
10 Jul 201916:01
cvelist
GithubExploit
Exploit for Server-Side Request Forgery in Gitlab
11 Apr 202111:23
githubexploit
Debian CVE
CVE-2018-19571
10 Jul 201916:01
debiancve
Exploit DB
GitLab 11.4.7 - Remote Code Execution (Authenticated)
16 Dec 202000:00
exploitdb
Exploit DB
GitLab 11.4.7 - RCE (Authenticated) (2)
24 Dec 202000:00
exploitdb
Tenable Nessus
FreeBSD : Gitlab -- Multiple vulnerabilities (8a4aba2d-f33e-11e8-9416-001b217b3468)
29 Nov 201800:00
nessus
NVD
CVE-2018-19571
10 Jul 201917:15
nvd
Packet Storm
GitLab 11.4.7 Remote Code Execution
16 Dec 202000:00
packetstorm
Rows per page
Vulners
Node
OR
gitlabee_<.8Range<11.4.8
gitlabee_<.1Range<11.5.1
gitlabee_-_11.*Range<11.3.11

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

22 Jul 2019 00:00Current
6.8Medium risk
Vulners AI Score6.8
CVSS 24
CVSS 3.17.7
EPSS0.2819
3