11 matches found
EUVD-2020-5548
Malware in sbrugna...
EUVD-2023-54387
Malicious code in bioql PyPI...
CVE-2020-13288
In GitLab before 13.0.12, 13.1.6, and 13.2.3, a stored XSS vulnerability exists in the CI/CD Jobs page...
GitLab 13.0 < 13.0.12 / 13.1 < 13.1.6 / 13.2 < 13.2.3 (CVE-2020-13288)
The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - In GitLab before 13.0.12, 13.1.6, and 13.2.3, a stored XSS vulnerability exists in the CI/CD Jobs page CVE-2020-13288 Note that Nessus has not tested for this issue but has instead relied only on the...
Unauthorized Access
GitLab is vulnerable to Unauthorized Access.The vulnerability is caused due to improper access controls. This could allows an attacker to access sensitive information within private projects,configurations, and other confidential data associated with CI/CD jobs...
CVE-2023-4532 Incorrect Authorization in GitLab
An issue has been discovered in GitLab affecting all versions starting from 16.2 before 16.2.8, all versions starting from 16.3 before 16.3.5, all versions starting from 16.4 before 16.4.1. Users were capable of linking CI/CD jobs of private projects which they are not a member of...
CVE-2023-4532 Incorrect Authorization in GitLab
An issue has been discovered in GitLab affecting all versions starting from 16.2 before 16.2.8, all versions starting from 16.3 before 16.3.5, all versions starting from 16.4 before 16.4.1. Users were capable of linking CI/CD jobs of private projects which they are not a member of...
CVE-2020-13288
In GitLab before 13.0.12, 13.1.6, and 13.2.3, a stored XSS vulnerability exists in the CI/CD Jobs page...
CVE-2020-13288
In GitLab before 13.0.12, 13.1.6, and 13.2.3, a stored XSS vulnerability exists in the CI/CD Jobs page...
CVE-2020-13288
CVE-2020-13288 is a stored XSS vulnerability in GitLab’s CI/CD Jobs page affecting versions prior to 13.0.12, 13.1.6, and 13.2.3. Root cause: stored XSS in the Jobs page. Impact: could allow script execution or injection impacting where the Jobs page is viewed. Affected products: GitLab (versions...
CVE-2020-13288
Removed by vendor...