Lucene search
K

110 matches found

Tenable Nessus
Tenable Nessus
added 2024/01/03 12:0 a.m.30 views

GitLab 11.9 < 13.11.6 / 13.12 < 13.12.6 / 14.0 < 14.0.2 (CVE-2021-22223)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - Client-Side code injection through Feature Flag name in GitLab CE/EE starting with 11.9 allows a specially crafted feature flag name to PUT requests on behalf of other users via clicking on a link...

6.1CVSS6.4AI score0.00949EPSS
Exploits0References4
Veracode
Veracode
added 2023/12/25 10:53 p.m.23 views

Information Exposure

gitlab is vulnerable to Information Exposure. The vulnerability is due to supersidebarloggedout feature flag. When this feature flag is enabled, it may unintentionally disclose GitLab version metadata to unauthorized individuals...

5.3CVSS6.4AI score0.0046EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2023/11/06 11:15 a.m.20 views

Default configuration

An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.0 before 16.3.6, all versions starting from 16.4 before 16.4.2, and all versions starting from 16.5.0 before 16.5.1 which have the supersidebarloggedout feature flag enabled. Affected versions with this...

5CVSS6.6AI score0.0046EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/11/06 10:30 a.m.15 views

CVE-2023-5831 Insertion of Sensitive Information Into Sent Data in GitLab

An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.0 before 16.3.6, all versions starting from 16.4 before 16.4.2, and all versions starting from 16.5.0 before 16.5.1 which have the supersidebarloggedout feature flag enabled. Affected versions with this...

3.7CVSS6AI score0.0046EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/11/01 12:0 a.m.4 views

GitLab Security Breach

GitLab is an open source, end-to-end software development platform from GitLab, Inc. with built-in version control, issue tracking, code review, CI/CD Continuous Integration and Continuous Delivery, and other features. A security vulnerability exists in GitLab, which stems from the fact that...

5.3CVSS7AI score0.0046EPSS
Exploits0References3
OSV
OSV
added 2023/09/01 12:32 p.m.13 views

MAL-2023-8045 Malicious code in feature-flag-framework (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware df4e8ce0407df917eafb41b7196edef8f261e63662349d90b1a5d6563cd6692c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7.2AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2023/09/01 12:32 p.m.3 views

Malicious code in feature-flag-framework (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware df4e8ce0407df917eafb41b7196edef8f261e63662349d90b1a5d6563cd6692c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
Veracode
Veracode
added 2023/08/06 2:35 p.m.21 views

Cross-site Scripting (XSS)

gitlab is vulnerable to Cross-site Scripting XSS. The vulnerability exists in the Feature Flag name of the library, which allows an attacker to inject and execute malicious flag names through the PUT request by clicking on a link...

6.1CVSS6.5AI score0.00949EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologies
added 2023/07/25 12:0 a.m.4 views

PT-2023-26479 · Typo3 · Typo3

Name of the Vulnerable Software and Affected Versions: TYPO3 versions 9.4.0 through 9.5.41 ELTS TYPO3 versions 10.4.0 through 10.4.38 ELTS TYPO3 versions 11.5.0 through 11.5.29 TYPO3 versions 12.4.0 through 12.4.3 Description: In multi-site scenarios, enumerating the HTTP query parameters id and ...

5.3CVSS5AI score0.0088EPSS
Exploits0References10
NVD
NVD
added 2023/02/03 8:15 p.m.49 views

CVE-2023-23925

Switcher Client is a JavaScript SDK to work with Switcher API which is cloud-based Feature Flag. Unsanitized input flows into Strategy match operation EXIST, where it is used to build a regular expression. This may result in a Regular expression Denial of Service attack reDOS. This issue has been...

8.6CVSS8.5AI score0.00541EPSS
Exploits0References2
Prion
Prion
added 2023/02/03 8:15 p.m.17 views

Design/Logic Flaw

Switcher Client is a JavaScript SDK to work with Switcher API which is cloud-based Feature Flag. Unsanitized input flows into Strategy match operation EXIST, where it is used to build a regular expression. This may result in a Regular expression Denial of Service attack reDOS. This issue has been...

5CVSS7.5AI score0.00541EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/02/03 7:5 p.m.46 views

CVE-2023-23925 Switcher Client contains Regular Expression Denial of Service (ReDoS)

Switcher Client is a JavaScript SDK to work with Switcher API which is cloud-based Feature Flag. Unsanitized input flows into Strategy match operation EXIST, where it is used to build a regular expression. This may result in a Regular expression Denial of Service attack reDOS. This issue has been...

8.6CVSS8.7AI score0.00541EPSS
Exploits0References2
OSV
OSV
added 2023/02/03 7:5 p.m.33 views

CVE-2023-23925 Switcher Client contains Regular Expression Denial of Service (ReDoS)

Switcher Client is a JavaScript SDK to work with Switcher API which is cloud-based Feature Flag. Unsanitized input flows into Strategy match operation EXIST, where it is used to build a regular expression. This may result in a Regular expression Denial of Service attack reDOS. This issue has been...

8.6CVSS7.7AI score0.00541EPSS
Exploits0References4
Oracle linux
Oracle linux
added 2022/10/04 12:0 a.m.148 views

Unbreakable Enterprise kernel security update

4.1.12-124.67.3 - media: imon: Fix null-ptr-deref in imonprobe Arvind Yadav Orabug: 31225377 CVE-2017-16537 - fbcon: remove soft scrollback code Linus Torvalds Orabug: 31914703 CVE-2020-14390 - inet: use bigger hash table for IP ID generation Eric Dumazet Orabug: 33778986 CVE-2021-45486 - ipv4:...

7.8CVSS0.7AI score0.02282EPSS
Exploits6
Metasploit
Metasploit
added 2022/07/16 5:42 p.m.214 views

Sourcegraph gitserver sshCommand RCE

A vulnerability exists within Sourcegraph's gitserver component that allows a remote attacker to execute arbitrary OS commands by modifying the core.sshCommand value within the git configuration. This command can then be triggered on demand by executing a git push operation. The vulnerability was...

8.8CVSS8.2AI score0.7431EPSS
Exploits8
0day.today
0day.today
added 2022/07/14 12:0 a.m.396 views

Sourcegraph gitserver sshCommand Remote Command Execution Exploit

A vulnerability exists within Sourcegraph's gitserver component that allows a remote attacker to execute arbitrary OS commands by modifying the core.sshCommand value within the git configuration. This command can then be triggered on demand by executing a git push operation. The vulnerability was...

8.8CVSS9AI score0.7431EPSS
Exploits8
Hacker One
Hacker One
added 2022/06/23 3:5 a.m.57 views

GitLab: RCE via the DecompressedArchiveSizeValidator and Project BulkImports (behind feature flag)

Summary The DecompressedArchiveSizeValidator is used to check the size of a archive before extracting it: https://gitlab.com/gitlab-org/gitlab/-/blob/v15.1.0-ee/lib/gitlab/importexport/decompressedarchivesizevalidator.rbL82 ruby def command "gzip -dc @archivepath | wc -c" end def validate pgrp =...

7.5CVSS9.4AI score0.76884EPSS
Exploits0
Prion
Prion
added 2022/06/13 12:15 a.m.19 views

Code injection

In Octopus Server after version 2022.1.1495 and before 2022.1.2647 if private spaces were enabled via the experimental feature flag all new users would have access to the Script Console within their private space...

4.3CVSS7.5AI score0.00847EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2022/06/12 12:0 a.m.5 views

Octopus Server 安全漏洞

Octopus Server is an automated deployment platform. A security vulnerability exists in Octopus Server versions after 2022.1.1495 and before 2022.1.2647, which stems from the fact that all new users can access the scripting console within their private space if private space is enabled via the...

7.5CVSS7.2AI score0.00847EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2022/05/24 5:28 p.m.33 views

Path traversal vulnerability in Blue Ocean Plugin

Blue Ocean Plugin 1.23.2 and earlier provides an undocumented feature flag, blueocean.features.GITREADSAVETYPE, that when set to the value clone allows an attacker with Item/Configure or Item/Create permission to read arbitrary files on the Jenkins controller file system. Blue Ocean Plugin 1.23.3...

6.5CVSS6.5AI score0.02126EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder