Lucene search
K

119 matches found

OSV
OSV
added 2026/06/29 6:0 a.m.4 views

BIT-GITLAB-2026-11379 Incorrect Authorization in GitLab

GitLab has remediated an issue in GitLab EE affecting all versions from 13.11 prior to 18.11.6, 19.0 prior to 19.0.3, and 19.1 prior to 19.1.1 in which incorrect authorization in DAST site profile management could allow a user with Developer role to exfiltrate DAST site profile secrets under...

5.3CVSS5.6AI score0.00188EPSS
Exploits0References3
NVD
NVD
added 2026/06/25 5:16 a.m.7 views

CVE-2026-11379

GitLab has remediated an issue in GitLab EE affecting all versions from 13.11 prior to 18.11.6, 19.0 prior to 19.0.3, and 19.1 prior to 19.1.1 in which incorrect authorization in DAST site profile management could allow a user with Developer role to exfiltrate DAST site profile secrets under...

5.3CVSS0.00188EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/25 4:33 a.m.6 views

EUVD-2026-39170

GitLab has remediated an issue in GitLab EE affecting all versions from 13.11 prior to 18.11.6, 19.0 prior to 19.0.3, and 19.1 prior to 19.1.1 in which incorrect authorization in DAST site profile management could allow a user with Developer role to exfiltrate DAST site profile secrets under...

5.3CVSS5.8AI score0.00188EPSS
Exploits0References2
CVE
CVE
added 2026/06/25 4:33 a.m.129 views

CVE-2026-11379

GitLab Security Advisory CVE-2026-11379 affects GitLab EE. The issue is an incorrect authorization flaw in DAST site profile management that could allow a user with the Developer role to exfiltrate DAST site profile secrets under certain conditions. Affected versions include all GitLab EE release...

5.3CVSS5.8AI score0.00188EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/06/25 12:0 a.m.7 views

PT-2026-52197

Name of the Vulnerable Software and Affected Versions GitLab EE versions 13.11 through 18.11.5 GitLab EE versions 19.0 through 19.0.2 GitLab EE versions 19.1 Description Incorrect authorization in DAST Dynamic Application Security Testing site profile management allows a user with the Developer...

5.3CVSS5.6AI score0.00188EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2026/06/25 12:0 a.m.8 views

GitLab 13.11 < 18.11.6 / 19.0 < 19.0.3 / 19.1 < 19.1.1 (CVE-2026-11379)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - GitLab has remediated an issue in GitLab EE affecting all versions from 13.11 prior to 18.11.6, 19.0 prior to 19.0.3, and 19.1 prior to 19.1.1 in which incorrect authorization in DAST site profile...

5.3CVSS5.7AI score0.00188EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.18 views

EUVD-2023-23657

Malicious code in bioql PyPI...

5CVSS5.1AI score0.00432EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-12387

Malicious code in bioql PyPI...

5CVSS5AI score0.00802EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-51671

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00541EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-51566

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00636EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-58186

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00554EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-51669

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00805EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-27688

Malicious code in bioql PyPI...

9.1CVSS6.3AI score0.00403EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-43119

Malicious code in bioql PyPI...

7.7CVSS6.8AI score0.00746EPSS
Exploits1References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/09/05 5:10 p.m.6 views

Malicious code in tju-dast-lixiaohong (npm)

The package tju-dast-lixiaohong was found to contain malicious code...

7AI score
Exploits0
OSV
OSV
added 2025/09/05 5:10 p.m.1 views

MAL-2025-46339 Malicious code in tju-dast-lixiaohong (npm)

The package tju-dast-lixiaohong was found to contain malicious code...

7AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.4 views

Malicious code in sjtu-seyilingliu-dast (npm)

The package sjtu-seyilingliu-dast was found to contain malicious code...

7AI score
Exploits0
OSV
OSV
added 2025/08/14 6:52 p.m.2 views

MAL-2025-33358 Malicious code in sjtu-seyilingliu-dast (npm)

The package sjtu-seyilingliu-dast was found to contain malicious code...

7.2AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 7:22 a.m.5 views

CVE-2024-2743

An issue was discovered in GitLab-EE starting with version 13.3 before 17.1.7, 17.2 before 17.2.5, and 17.3 before 17.3.2 that would allow an attacker to modify an on-demand DAST scan without permissions and leak variables...

9.1CVSS6.7AI score0.00403EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 5:7 a.m.8 views

CVE-2023-5913

Incorrect Privilege Assignment vulnerability in opentext Fortify ScanCentral DAST. The vulnerability could be exploited to gain elevated privileges.This issue affects Fortify ScanCentral DAST versions 21.1, 21.2, 21.2.1, 22.1, 22.1.1, 22.2, 23.1...

9.8CVSS7.1AI score0.00554EPSS
Exploits0References1
Rows per page
Query Builder