119 matches found
BIT-GITLAB-2026-11379 Incorrect Authorization in GitLab
GitLab has remediated an issue in GitLab EE affecting all versions from 13.11 prior to 18.11.6, 19.0 prior to 19.0.3, and 19.1 prior to 19.1.1 in which incorrect authorization in DAST site profile management could allow a user with Developer role to exfiltrate DAST site profile secrets under...
CVE-2026-11379
GitLab has remediated an issue in GitLab EE affecting all versions from 13.11 prior to 18.11.6, 19.0 prior to 19.0.3, and 19.1 prior to 19.1.1 in which incorrect authorization in DAST site profile management could allow a user with Developer role to exfiltrate DAST site profile secrets under...
EUVD-2026-39170
GitLab has remediated an issue in GitLab EE affecting all versions from 13.11 prior to 18.11.6, 19.0 prior to 19.0.3, and 19.1 prior to 19.1.1 in which incorrect authorization in DAST site profile management could allow a user with Developer role to exfiltrate DAST site profile secrets under...
CVE-2026-11379
GitLab Security Advisory CVE-2026-11379 affects GitLab EE. The issue is an incorrect authorization flaw in DAST site profile management that could allow a user with the Developer role to exfiltrate DAST site profile secrets under certain conditions. Affected versions include all GitLab EE release...
PT-2026-52197
Name of the Vulnerable Software and Affected Versions GitLab EE versions 13.11 through 18.11.5 GitLab EE versions 19.0 through 19.0.2 GitLab EE versions 19.1 Description Incorrect authorization in DAST Dynamic Application Security Testing site profile management allows a user with the Developer...
GitLab 13.11 < 18.11.6 / 19.0 < 19.0.3 / 19.1 < 19.1.1 (CVE-2026-11379)
The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - GitLab has remediated an issue in GitLab EE affecting all versions from 13.11 prior to 18.11.6, 19.0 prior to 19.0.3, and 19.1 prior to 19.1.1 in which incorrect authorization in DAST site profile...
EUVD-2023-23657
Malicious code in bioql PyPI...
EUVD-2023-12387
Malicious code in bioql PyPI...
EUVD-2022-51671
Malicious code in bioql PyPI...
EUVD-2022-51566
Malicious code in bioql PyPI...
EUVD-2023-58186
Malicious code in bioql PyPI...
EUVD-2022-51669
Malicious code in bioql PyPI...
EUVD-2024-27688
Malicious code in bioql PyPI...
EUVD-2022-43119
Malicious code in bioql PyPI...
Malicious code in tju-dast-lixiaohong (npm)
The package tju-dast-lixiaohong was found to contain malicious code...
MAL-2025-46339 Malicious code in tju-dast-lixiaohong (npm)
The package tju-dast-lixiaohong was found to contain malicious code...
Malicious code in sjtu-seyilingliu-dast (npm)
The package sjtu-seyilingliu-dast was found to contain malicious code...
MAL-2025-33358 Malicious code in sjtu-seyilingliu-dast (npm)
The package sjtu-seyilingliu-dast was found to contain malicious code...
CVE-2024-2743
An issue was discovered in GitLab-EE starting with version 13.3 before 17.1.7, 17.2 before 17.2.5, and 17.3 before 17.3.2 that would allow an attacker to modify an on-demand DAST scan without permissions and leak variables...
CVE-2023-5913
Incorrect Privilege Assignment vulnerability in opentext Fortify ScanCentral DAST. The vulnerability could be exploited to gain elevated privileges.This issue affects Fortify ScanCentral DAST versions 21.1, 21.2, 21.2.1, 22.1, 22.1.1, 22.2, 23.1...