WordPress plugin Automotive Car Dealership Business 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. The...

Linux Distros Unpatched Vulnerability : CVE-2020-26413

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.4 before 13.6.2. Information disclosure via GraphQL results in user email...

PT-2024-35333 · Unknown · Gopi Ramasamy Image Horizontal Reel Scroll Slideshow

Name of the Vulnerable Software and Affected Versions: Gopi Ramasamy Image horizontal reel scroll slideshow versions prior to 13.4 Description: The issue is related to improper neutralization of input during web page generation, also known as 'Cross-site Scripting'. This allows for Stored XSS...

Authentication flaw

An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.4 before 14.10.5, all versions starting from 15.0 before 15.0.4, all versions starting from 15.1 before 15.1.1. GitLab reveals if a user has enabled two-factor authentication on their account in the HTML source, ...

PT-2021-14892 · Gitlab · Gitlab

Name of the Vulnerable Software and Affected Versions: GitLab versions 13.4 and later Description: An issue has been discovered in GitLab, where improper access control allows unauthorized users to access details on analytic pages. Recommendations: For versions 13.4 and later, update to a version...

PT-2021-14884 · Gitlab · Gitlab Ce/Ee +1

Name of the Vulnerable Software and Affected Versions: GitLab EE versions 13.4 and later Description: An issue was identified that leaked internal IP address via error messages. Recommendations: For GitLab EE versions 13.4 and later, at the moment, there is no information about a newer version th...

UBUNTU-CVE-2020-26413

An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.4 before 13.6.2. Information disclosure via GraphQL results in user email being unexpectedly visible...

GitLab 信息泄露漏洞

GitLab is a Ruby on Rails developed, self-hosted, Git version control system project repository application from GitLab, Inc. The program can be used to access the project's file contents, commit history, bug list , etc. Git is a free, open source distributed version control system. GitLab CE/EE...

PT-2020-16412 · Gitlab · Gitlab Ce/Ee +1

Name of the Vulnerable Software and Affected Versions: GitLab CE/EE versions 12.8 through 13.3.8 GitLab CE/EE versions 13.4 through 13.4.4 GitLab CE/EE versions 13.5 through 13.5.1 Description: A path traversal vulnerability in the package upload functionality allows an attacker to save packages ...

CVE-2016-0438

Unspecified vulnerability in the Oracle Retail Point-of-Service component in Oracle Retail Applications 13.4, 14.0, and 14.1 allows local users to affect confidentiality via vectors related to Mobile POS, a different vulnerability than CVE-2016-0434, CVE-2016-0436, and CVE-2016-0437...