Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

UbuntuCve
UbuntuCveadded 2019/12/18 9:15 p.m.20 views

CVE-2019-15580

An information exposure vulnerability exists in gitlab.com v12.3.2, v12.2.6, and v12.1.10 when using the blocking merge request feature, it was possible for an unauthenticated user to see the head pipeline data of a public project even though pipeline visibility was restricted...

6.5CVSS6.6AI score0.00238EPSS
Exploits1References2
Debian CVE
Debian CVEadded 2019/12/18 8:59 p.m.22 views

CVE-2019-15580

Removed by vendor...

6.5CVSS6.6AI score0.00238EPSS
Exploits1
Hacker One
Hacker Oneadded 2019/08/05 11:58 a.m.59 views

GitLab: Head pipeline leaked to unauthorized users via blocking merge request feature

Summary GitLab allows for public and internal projects to restrict the visibility of pipelines to project members only. Then, only project members should have access to the pipeline information. GitLab recently added the blocking merge request feature. This feature can be used to leak the head...

4CVSS6.4AI score0.00238EPSS
Exploits1
Rows per page
Query Builder