GitLab 安全漏洞

GitLab is an open source, end-to-end software development platform from GitLab, Inc. with built-in version control, issue tracking, code review, CI/CD Continuous Integration and Continuous Delivery, and other features. A security vulnerability exists in GitLab EE versions 17.6.0 to before 18.3.5,...

CVE-2024-8266

An issue was discovered in GitLab CE/EE affecting all versions starting from 17.1 prior to 17.6.0, which allows an attacker with maintainer role to trigger a pipeline as project owner under certain circumstances...

CVE-2023-5117

CVE-2023-5117 affects GitLab CE/EE prior to 17.6.0. The issue allows access to files uploaded to comments on confidential issues and epics of public projects via a direct URL without authentication. The description in connected sources confirms the affected product family and the vulnerability me...

WordPress Surbma | GDPR Proof Cookie Consent & Notice Bar Plugin <= 17.5.3 is vulnerable to Cross Site Scripting (XSS)

Software Surbma | GDPR Proof Cookie Consent & Notice Bar Type Plugin Vulnerable versions = 17.5.3 Fixed in 17.6.0 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-23894 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 6334c11896...