Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 11:30 p.m.8 views

CVE-2022-1416

Missing sanitization of data in Pipeline error messages in GitLab CE/EE affecting all versions starting from 1.0.2 before 14.8.6, all versions from 14.9.0 before 14.9.4, and all versions from 14.10.0 before 14.10.1 allows for rendering of attacker controlled HTML tags and CSS styling...

5.4CVSS6.4AI score0.00723EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2024/01/03 12:0 a.m.19 views

GitLab 1.0.2 < 14.8.6 / 14.9.0 < 14.9.4 / 14.10.0 < 14.10.1 (CVE-2022-1416)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - Missing sanitization of data in Pipeline error messages in GitLab CE/EE affecting all versions starting from 1.0.2 before 14.8.6, all versions from 14.9.0 before 14.9.4, and all versions from 14.10.0...

5.4CVSS5.7AI score0.00723EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2022/06/13 12:0 a.m.14 views

GitLab 1.0.2 < 14.8.6, 14.9.0 < 14.9.4, 14.10.0 < 14.10.1 Multiple Vulnerabilities

GitLab is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:gitlab:gitlab"; if description...

8.8CVSS7.4AI score0.01406EPSS
Exploits1References7
CVE
CVE
added 2022/05/19 5:10 p.m.102 views

CVE-2022-1416

CVE-2022-1416 affects GitLab CE/EE with vulnerable Pipeline error message sanitization across multiple version ranges: 1.0.2–14.8.5, 14.9.0–14.9.3, and 14.10.0–14.10.0. Root cause: missing sanitization allows rendering attacker-controlled HTML tags and CSS. Impact: potential HTML/CSS styling rend...

5.4CVSS5.4AI score0.00723EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder