EUVD-2022-15814

Malicious code in bioql PyPI...

BIT-GITLAB-2022-0751

Inaccurate display of Snippet files containing special characters in all versions of GitLab CE/EE allows an attacker to create Snippets with misleading content which could trick unsuspecting users into executing arbitrary commands...

Cross-Site Scripting (XSS)

gitlab is vulnerable to Cross-Site Scripting XSS. The vulnerability exists because the inaccurate display of Snippet files containing special characters, which allows an attacker to create Snippets with misleading content that could potentially trick unsuspecting users into executing arbitrary...

Command injection

Inaccurate display of Snippet files containing special characters in all versions of GitLab CE/EE allows an attacker to create Snippets with misleading content which could trick unsuspecting users into executing arbitrary commands...

CVE-2022-0751

Inaccurate display of Snippet files containing special characters in all versions of GitLab CE/EE allows an attacker to create Snippets with misleading content which could trick unsuspecting users into executing arbitrary commands...

PT-2022-13411 · Gitlab · Gitlab Ce/Ee +1

Name of the Vulnerable Software and Affected Versions: GitLab CE/EE affected versions not specified Description: The issue concerns the inaccurate display of Snippet files containing special characters, which allows an attacker to create Snippets with misleading content. This misleading content...

GitLab Enterprise Edition 和 GitLab Community Edition 访问控制错误漏洞

GitLab Enterprise Edition is a content management system, and GitLab Community Edition is a community edition of GitLab from GitLab, Inc. An Access Control Error vulnerability exists in GitLab Enterprise Edition and GitLab Community Edition that stems from inaccurately displaying Snippet files th...