4 matches found
UBUNTU-CVE-2022-4054
An issue has been discovered in GitLab affecting all versions starting from 9.3 before 15.4.6, all versions starting from 15.5 before 15.5.5, all versions starting from 15.6 before 15.6.1. It was possible for a project maintainer to leak a webhook secret token by changing the webhook URL to an...
CVE-2022-4054
GitLab CVE-2022-4054 affects versions 9.3–15.4.5, 15.5–15.5.4, and 15.6–15.6.0. A project maintainer could leak a webhook secret token by altering the webhook URL to capture request headers. Remediation: upgrade to GitLab 15.4.6+ (for 9.3–15.4.5), 15.5.5+ (for 15.5–15.5.4), or 15.6.1+ (for 15.6–1...
CVE-2022-4054
An issue has been discovered in GitLab affecting all versions starting from 9.3 before 15.4.6, all versions starting from 15.5 before 15.5.5, all versions starting from 15.6 before 15.6.1. It was possible for a project maintainer to leak a webhook secret token by changing the webhook URL to an...
FreeBSD : Gitlab -- Multiple Vulnerabilities (3cde510a-7135-11ed-a28b-bff032704f00)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 3cde510a-7135-11ed-a28b-bff032704f00 advisory. - Gitlab reports: DAST API scanner exposes Authorization headers in vulnerabilities Group IP...