Lucene search
+L

5 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 8:49 a.m.13 views

CVE-2021-22171

Insufficient validation of authentication parameters in GitLab Pages for GitLab 11.5+ allows an attacker to steal a victim's API token if they click on a maliciously crafted link...

7.3CVSS6.5AI score0.01332EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/05/17 12:0 a.m.25 views

GitLab 11.5.0 < 13.5.6 / 13.6.0 < 13.6.4 / 13.7.0 < 13.7.2 (CVE-2021-22171)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - Insufficient validation of authentication parameters in GitLab Pages for GitLab 11.5+ allows an attacker to steal a victim's API token if they click on a maliciously crafted link CVE-2021-22171 Note...

7.3CVSS6.8AI score0.01332EPSS
Exploits0References4
CVE
CVE
added 2021/01/15 3:10 p.m.80 views

CVE-2021-22171

GitLab CVE-2021-22171 affects GitLab Pages in GitLab 11.5 and later. The root cause is insufficient validation of authentication parameters, enabling an attacker to steal a victim’s API token when the user clicks a maliciously crafted link. Documents consistently describe this vector as the impac...

7.3CVSS6.3AI score0.01332EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2021/01/15 3:10 p.m.26 views

CVE-2021-22171

Removed by vendor...

7.3CVSS6.8AI score0.01332EPSS
Exploits0
ArchLinux
ArchLinux
added 2021/01/12 12:0 a.m.131 views

[ASA-202101-10] gitlab: multiple issues

Arch Linux Security Advisory ASA-202101-10 ========================================== Severity: High Date : 2021-01-12 CVE-ID : CVE-2020-26414 CVE-2021-22166 CVE-2021-22167 CVE-2021-22168 CVE-2021-22171 Package : gitlab Type : multiple issues Remote : Yes Link :...

7.5CVSS1.3AI score0.0157EPSS
Exploits0References14
Rows per page
Query Builder