Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

38 matches found

RedhatCVE
RedhatCVEadded 2026/01/09 11:22 a.m.1 views

CVE-2021-22211

An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.7. GitLab Dependency Proxy, under certain circumstances, can impersonate a user resulting in possibly incorrect access handling...

4.3CVSS7AI score0.00165EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2021-9357

Malicious code in bioql PyPI...

4.3CVSS4.7AI score0.00165EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2024-32828

Malicious code in bioql PyPI...

5.5CVSS6.3AI score0.00041EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2024-44087

Malicious code in bioql PyPI...

5.5CVSS6.3AI score0.00031EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2024-49313

Malicious code in bioql PyPI...

7.7CVSS6.3AI score0.0007EPSS
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2025/08/30 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2021-22211

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.7. GitLab Dependency Proxy, under certain circumstances, can impersonate a...

4.3CVSS5AI score0.00165EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/06/20 12:0 a.m.3 views

GitLab 16.6 < 17.9.7 / 17.10 < 17.10.5 / 17.11 < 17.11.1 (CVE-2025-2443)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - Gitlab reports: Cross Site Scripting XSS in Maven Dependency Proxy through CSP directives Cross Site Scripting XSS in Maven dependency proxy through cache headers Network Error Logging NEL Header...

8.7CVSS5.5AI score0.00033EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2025/05/23 10:36 a.m.5 views

CVE-2024-4278

An information disclosure issue has been discovered in GitLab EE affecting all versions starting from 16.5 prior to 17.2.8, from 17.3 prior to 17.3.4, and from 17.4 prior to 17.4.1. A maintainer could obtain a Dependency Proxy password by editing a certain Dependency Proxy setting...

5.5CVSS6.2AI score0.00041EPSS
Exploits0
RedhatCVE
RedhatCVEadded 2025/05/23 7:37 a.m.3 views

CVE-2024-4472

An issue was discovered in GitLab CE/EE affecting all versions starting from 16.5 prior to 17.1.7, starting from 17.2 prior to 17.2.5, and starting from 17.3 prior to 17.3.2, where dependency proxy credentials are retained in graphql Logs...

5.5CVSS6.4AI score0.00031EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/02/04 10:34 p.m.6 views

CVE-2024-8635

A server-side request forgery issue has been discovered in GitLab EE affecting all versions starting from 16.8 prior to 17.1.7, from 17.2 prior to 17.2.5, and from 17.3 prior to 17.3.2. It was possible for an attacker to make requests to internal resources using a custom Maven Dependency Proxy UR...

7.7CVSS6.5AI score0.0007EPSS
Exploits0References1
OSV
OSVadded 2024/09/27 7:24 a.m.141 views

BIT-GITLAB-2024-4278 Incorrect Synchronization in GitLab

An information disclosure issue has been discovered in GitLab EE affecting all versions starting from 16.5 prior to 17.2.8, from 17.3 prior to 17.3.4, and from 17.4 prior to 17.4.1. A maintainer could obtain a Dependency Proxy password by editing a certain Dependency Proxy setting...

5.5CVSS4.1AI score0.00041EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2024/09/27 12:0 a.m.15 views

GitLab 16.5 < 17.2.8 / 17.3 < 17.3.4 / 17.4 < 17.4.1 (CVE-2024-4278)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An information disclosure issue has been discovered in GitLab EE affecting all versions starting from 16.5 prior to 17.2.8, from 17.3 prior to 17.3.4, and from 17.4 prior to 17.4.1. A maintainer could...

5.5CVSS5.5AI score0.00041EPSS
Exploits0References4
NVD
NVDadded 2024/09/26 7:15 a.m.14 views

CVE-2024-4278

An information disclosure issue has been discovered in GitLab EE affecting all versions starting from 16.5 prior to 17.2.8, from 17.3 prior to 17.3.4, and from 17.4 prior to 17.4.1. A maintainer could obtain a Dependency Proxy password by editing a certain Dependency Proxy setting...

5.5CVSS0.00041EPSS
Exploits0References2
Cvelist
Cvelistadded 2024/09/26 6:30 a.m.23 views

CVE-2024-4278 Incorrect Synchronization in GitLab

An information disclosure issue has been discovered in GitLab EE affecting all versions starting from 16.5 prior to 17.2.8, from 17.3 prior to 17.3.4, and from 17.4 prior to 17.4.1. A maintainer could obtain a Dependency Proxy password by editing a certain Dependency Proxy setting...

5.5CVSS0.00041EPSS
Exploits0References2
CVE
CVEadded 2024/09/26 6:30 a.m.208 views

CVE-2024-4278

GitLab Enterprise Edition (GitLab EE) is affected by CVE-2024-4278. The issue is an information disclosure where a maintainer could obtain a Dependency Proxy password by editing a specific Dependency Proxy setting. Affected versions are 16.5 to 16.2.7? (per provided data: 16.5 up to 17.2.8, 17.3 ...

5.5CVSS4.1AI score0.00041EPSS
Exploits0References2Affected Software1
OSV
OSVadded 2024/09/26 6:30 a.m.12 views

CVE-2024-4278 Incorrect Synchronization in GitLab

An information disclosure issue has been discovered in GitLab EE affecting all versions starting from 16.5 prior to 17.2.8, from 17.3 prior to 17.3.4, and from 17.4 prior to 17.4.1. A maintainer could obtain a Dependency Proxy password by editing a certain Dependency Proxy setting...

5.5CVSS6AI score0.00041EPSS
Exploits0References5
Positive Technologies
Positive Technologiesadded 2024/09/25 12:0 a.m.2 views

PT-2024-30151 · Gitlab · Gitlab Ce/Ee +1

Name of the Vulnerable Software and Affected Versions: GitLab EE versions 16.5 through 17.2.7 GitLab EE versions 17.3 through 17.3.3 GitLab EE versions 17.4 through 17.4.0 Description: An information disclosure issue has been discovered in GitLab EE. A maintainer could obtain a Dependency Proxy...

5.5CVSS6.5AI score0.00041EPSS
Exploits0References9
OSV
OSVadded 2024/09/14 7:13 a.m.131 views

BIT-GITLAB-2024-4472 Insertion of Sensitive Information into Log File in GitLab

An issue was discovered in GitLab CE/EE affecting all versions starting from 16.5 prior to 17.1.7, starting from 17.2 prior to 17.2.5, and starting from 17.3 prior to 17.3.2, where dependency proxy credentials are retained in graphql Logs...

5.5CVSS4.6AI score0.00031EPSS
Exploits0References4
NVD
NVDadded 2024/09/12 7:15 p.m.18 views

CVE-2024-4472

An issue was discovered in GitLab CE/EE affecting all versions starting from 16.5 prior to 17.1.7, starting from 17.2 prior to 17.2.5, and starting from 17.3 prior to 17.3.2, where dependency proxy credentials are retained in graphql Logs...

5.5CVSS0.00031EPSS
Exploits0References3
OSV
OSVadded 2024/09/12 7:15 p.m.0 views

UBUNTU-CVE-2024-4472

An issue was discovered in GitLab CE/EE affecting all versions starting from 16.5 prior to 17.1.7, starting from 17.2 prior to 17.2.5, and starting from 17.3 prior to 17.3.2, where dependency proxy credentials are retained in graphql Logs...

5.5CVSS5.8AI score0.00031EPSS
Exploits0References4
Rows per page
Query Builder