7 matches found
GitLab 16.5 < 16.5.3 / 16.6 < 16.6.1 (CVE-2023-6396)
The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - Gitlab reports: XSS and ReDoS in Markdown via Banzai pipeline of Jira Members with admingroupmember custom permission can add members with higher role Release Description visible in public projects...
CVE-2023-3401
creationtimestamp| type| source ---|---|--- 2023-08-02 12:39:06+00:00| seen| https://t.me/cibsecurity/67566...
CVE-2023-3401 Improper Control of Generation of Code ('Code Injection') in GitLab
An issue has been discovered in GitLab affecting all versions before 16.0.8, all versions starting from 16.1 before 16.1.3, all versions starting from 16.2 before 16.2.2. The main branch of a repository with a specially designed name allows an attacker to create repositories with malicious code...
CVE-2023-3401 Improper Control of Generation of Code ('Code Injection') in GitLab
An issue has been discovered in GitLab affecting all versions before 16.0.8, all versions starting from 16.1 before 16.1.3, all versions starting from 16.2 before 16.2.2. The main branch of a repository with a specially designed name allows an attacker to create repositories with malicious code...
CVE-2023-3401
GitLab CVE-2023-3401 affects GitLab CE/EE versions before 16.0.8, 16.1 before 16.1.3, and 16.2 before 16.2.2. The root cause is a specially named main-branch design that lets an attacker create repositories containing malicious code. Mitigations are available: updates fixing the issue include Git...
CVE-2023-3401 Improper Control of Generation of Code ('Code Injection') in GitLab
An issue has been discovered in GitLab affecting all versions before 16.0.8, all versions starting from 16.1 before 16.1.3, all versions starting from 16.2 before 16.2.2. The main branch of a repository with a specially designed name allows an attacker to create repositories with malicious code...
GitLab 0 < 16.0.8 / 16.1.0 < 16.1.3 / 16.2.0 < 16.2.2 (CVE-2023-3401)
The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab affecting all versions before 16.0.8, all versions starting from 16.1 before 16.1.3, all versions starting from 16.2 before 16.2.2. The main branch of a reposito...