Linux Distros Unpatched Vulnerability : CVE-2020-13331

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue has been discovered in GitLab affecting versions prior to 12.10.13. GitLab was vulnerable to a stored XSS by in the Wiki pasges. CVE-2020-13331 Note th...

Linux Distros Unpatched Vulnerability : CVE-2020-13320

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue has been discovered in GitLab before version 12.10.13 that allowed a project member with limited permissions to view the project security dashboard...

GitLab 12.9 < 12.10.13 / 13.0 < 13.0.8 / 13.1 < 13.1.2 (CVE-2020-13322)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - A vulnerability was discovered in GitLab versions after 12.9. Due to improper verification of permissions, an unauthorized user can create and delete deploy tokens. CVE-2020-13322 Note that Nessus has...

GitLab 12.10 < 12.10.13 (CVE-2020-13337)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab affecting versions from 12.10 to 12.10.12 that allowed for a stored XSS payload to be added as a group name. CVE-2020-13337 Note that Nessus has not tested for...

CVE-2020-13338

An issue has been discovered in GitLab affecting versions prior to 12.10.13, 13.0.8, 13.1.2. A stored cross-site scripting vulnerability was discovered when editing references...

PT-2020-13479 · Gitlab · Gitlab

Name of the Vulnerable Software and Affected Versions: GitLab versions prior to 12.10.13 GitLab versions prior to 13.0.8 GitLab versions prior to 13.1.2 Description: A stored cross-site scripting issue was discovered in GitLab when editing references. Recommendations: For versions prior to...

Cross site scripting

An issue has been discovered in GitLab affecting versions from 11.8 before 12.10.13. GitLab was vulnerable to a stored XSS by in the error tracking feature...

CVE-2020-13336

An issue has been discovered in GitLab affecting versions from 11.8 before 12.10.13. GitLab was vulnerable to a stored XSS by in the error tracking feature...

CVE-2020-13331

An issue has been discovered in GitLab affecting versions prior to 12.10.13. GitLab was vulnerable to a stored XSS by in the Wiki pasges...

Cross site scripting

An issue has been discovered in GitLab affecting versions prior to 12.10.13. GitLab was vulnerable to a stored XSS by in the Wiki pasges...

GitLab Cross-Site Scripting Vulnerability (CNVD-2020-57834)

GitLab is a Ruby on Rails-developed, self-hosted, Git version control system project repository application from the American company GitLab. The program can be used to access a project's file contents, commit history, bug lists, and more. A cross-site scripting vulnerability exists in GitLab...

GitLab Authorization Issues Vulnerability (CNVD-2020-57831)

GitLab is a Ruby on Rails-developed, self-hosted, Git version control system project repository application from the American company GitLab. The program can be used to access a project's file contents, commit history, bug lists, and more. A security vulnerability exists in GitLab versions prior ...

GitLab Cross-Site Scripting Vulnerability (CNVD-2020-57835)

GitLab is a Ruby on Rails-developed, self-hosted, Git version control system project repository application from the American company GitLab. The program can be used to access a project's file contents, commit history, bug lists, and more. A security vulnerability exists in GitLab versions prior ...

CVE-2020-13331

CVE-2020-13331 affects GitLab versions prior to 12.10.13. Multiple connected sources describe a stored XSS vulnerability in the Wiki pages, stemming from inadequate validation of wiki content. Impact is described as possible client-side script execution affecting affected GitLab deployments; expl...

CVE-2020-13331

An issue has been discovered in GitLab affecting versions prior to 12.10.13. GitLab was vulnerable to a stored XSS by in the Wiki pasges...

CVE-2020-13330

An issue has been discovered in GitLab affecting versions prior to 12.10.13. GitLab was vulnerable to a stored XSS in import the Bitbucket project feature...

CVE-2020-13329

Removed by vendor...

PT-2020-13470 · Gitlab · Gitlab

Name of the Vulnerable Software and Affected Versions: GitLab versions prior to 12.10.13 Description: An issue has been discovered in GitLab where it is vulnerable to a stored XSS in the blob view feature. Recommendations: For versions prior to 12.10.13, update to version 12.10.13 or later to...

PT-2020-13471 · Gitlab · Gitlab

Name of the Vulnerable Software and Affected Versions: GitLab versions prior to 12.10.13 Description: The issue is related to a stored XSS in the import Bitbucket project feature. Recommendations: For versions prior to 12.10.13, update to version 12.10.13 or later to resolve the issue...

PT-2020-13472 · Gitlab · Gitlab

Name of the Vulnerable Software and Affected Versions: GitLab versions prior to 12.10.13 Description: An issue has been discovered in GitLab where it was vulnerable to a stored XSS in the Wiki pages. Recommendations: For versions prior to 12.10.13, update to version 12.10.13 or later to resolve t...