Lucene search
+L

7 matches found

cve
cve
added 2024/03/28 7:17 a.m.267 views

CVE-2024-2818

CVE-2024-2818 concerns GitLab CE/EE. Affected are all versions before 16.8.5, all 16.9.x before 16.9.3, and all 16.10.x before 16.10.1. An attacker could cause a denial of service by sending a malicious crafted description parameter for labels. The issue’s remediation is to upgrade to the fixed r...

6.5CVSS4.2AI score0.00945EPSS
Exploits0References1Affected Software1
osv
osv
added 2024/03/28 7:17 a.m.26 views

CVE-2024-2818 Allocation of Resources Without Limits or Throttling in GitLab

An issue has been discovered in GitLab CE/EE affecting all versions before 16.8.5, all versions starting from 16.9 before 16.9.3, all versions starting from 16.10 before 16.10.1. It was possible for an attacker to cause a denial of service using malicious crafted description parameter for labels...

4.3CVSS6.1AI score0.00945EPSS
Exploits0References4
debiancve
debiancve
added 2024/03/28 7:17 a.m.46 views

CVE-2024-2818

Removed by vendor...

6.5CVSS5.8AI score0.00945EPSS
Exploits0
prion
prion
added 2017/11/21 8:29 a.m.13 views

Cross site scripting

MapOS 3.1.11 and earlier has a Stored Cross-site Scripting XSS vulnerability in /clientes/visualizar, which allows remote attackers to inject arbitrary web script or HTML via a crafted description parameter...

3.5CVSS5.2AI score0.00752EPSS
Exploits0References1Affected Software1
nvd
nvd
added 2017/11/21 8:29 a.m.12 views

CVE-2017-16919

MapOS 3.1.11 and earlier has a Stored Cross-site Scripting XSS vulnerability in /clientes/visualizar, which allows remote attackers to inject arbitrary web script or HTML via a crafted description parameter...

5.4CVSS5.2AI score0.00752EPSS
Exploits0References1
osv
osv
added 2017/11/21 8:29 a.m.15 views

CVE-2017-16919

MapOS 3.1.11 and earlier has a Stored Cross-site Scripting XSS vulnerability in /clientes/visualizar, which allows remote attackers to inject arbitrary web script or HTML via a crafted description parameter...

5.4CVSS5.6AI score
Exploits0References1
cvelist
cvelist
added 2017/11/21 8:0 a.m.17 views

CVE-2017-16919

MapOS 3.1.11 and earlier has a Stored Cross-site Scripting XSS vulnerability in /clientes/visualizar, which allows remote attackers to inject arbitrary web script or HTML via a crafted description parameter...

5.2AI score0.00752EPSS
Exploits0References1
Rows per page
Query Builder