CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added 2026/01/07 9:18 a.m.•10 views

CVE-2025-1072

A Denial of Service DoS issue has been discovered in GitLab CE/EE affecting all versions starting from 7.14.1 prior to 17.3.7, 17.4 prior to 17.4.4, and 17.5 prior to 17.5.2. A denial of service could occur upon importing maliciously crafted content using the Fogbugz importer...

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2020-3379

Malware in sbrugna...

9.8CVSS9.2AI score0.01822EPSS

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2006-0202

Malware in sbrugna...

4.3CVSS6.4AI score0.01982EPSS

Exploits0References8

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2021-26250

Malware in sbrugna...

5.5CVSS5.3AI score0.00593EPSS

Exploits0References4

EUVD•added 2025/10/03 8:7 p.m.•16 views

EUVD-2023-1151

Malicious code in bioql PyPI...

4.3CVSS4.9AI score0.00448EPSS

EUVD•added 2025/10/03 8:7 p.m.•14 views

EUVD-2025-1988

Malicious code in bioql PyPI...

Tenable Nessus•added 2025/08/30 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2021-39894

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In all versions of GitLab CE/EE since version 8.0, a DNS rebinding vulnerability exists in Fogbugz importer which may be used by attackers to exploit Server Sid...

5.5CVSS5.7AI score0.00593EPSS

Exploits0References2

Tenable Nessus•added 2025/08/22 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2025-1072

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A Denial of Service DoS issue has been discovered in GitLab CE/EE affecting all versions starting from 7.14.1 prior to 17.3.7, 17.4 prior to 17.4.4, and 17.5...

6.5CVSS5.4AI score0.00496EPSS

Exploits0References2

Tenable Nessus•added 2025/08/18 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2020-10980

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GitLab EE/CE 8.0.rc1 to 12.9 is vulnerable to a blind SSRF in the FogBugz integration. CVE-2020-10980 Note that Nessus relies on the presence of the package as...

9.8CVSS8.2AI score0.01822EPSS

Exploits0References2

RedhatCVE•added 2025/05/23 3:42 a.m.•6 views

CVE-2023-30522

A missing permission check in Jenkins Fogbugz Plugin 2.2.17 and earlier allows attackers with Item/Read permission to trigger builds of jobs specified in a 'jobname' request parameter...

4.3CVSS6.5AI score0.00448EPSS

RedhatCVE•added 2025/05/22 8:43 p.m.•2 views

CVE-2021-39894

In all versions of GitLab CE/EE since version 8.0, a DNS rebinding vulnerability exists in Fogbugz importer which may be used by attackers to exploit Server Side Request Forgery attacks...

5.5CVSS6AI score0.00593EPSS

NVD•added 2025/02/07 4:15 a.m.•31 views

CVE-2025-1072

6.5CVSS0.00496EPSS

OSV•added 2025/02/07 4:15 a.m.•4 views

UBUNTU-CVE-2025-1072

6.5CVSS5.7AI score0.00496EPSS

Exploits0References5

Vulnrichment•added 2025/02/07 4:5 a.m.•7 views

CVE-2025-1072 Allocation of Resources Without Limits or Throttling in GitLab

6.5CVSS6.5AI score0.00496EPSS

CVE•added 2025/02/07 4:5 a.m.•78 views

CVE-2025-1072

GitLab CE/EE DoS vulnerability CVE-2025-1072: A DoS can occur when importing maliciously crafted content via the Fogbugz importer. Affected versions include all releases from 7.14.1 up to but not including 17.3.7, 17.4 up to 17.4.3, and 17.5 up to 17.5.1. Remediation is provided by patches releas...

6.5CVSS6.8AI score0.00496EPSS

Exploits0References3Affected Software1

Debian CVE•added 2025/02/07 4:5 a.m.•8 views

CVE-2025-1072

Removed by vendor...

6.5CVSS5.8AI score0.00496EPSS

Exploits0

Cvelist•added 2025/02/07 4:5 a.m.•30 views

CVE-2025-1072 Allocation of Resources Without Limits or Throttling in GitLab

6.5CVSS0.00496EPSS

OSV•added 2025/02/07 4:5 a.m.•4 views

CVE-2025-1072 Allocation of Resources Without Limits or Throttling in GitLab

CNNVD•added 2025/02/07 12:0 a.m.•2 views

Exploits0References6

GitLab Enterprise Edition和GitLab Community Edition 安全漏洞

GitLab Enterprise Edition EE and GitLab Community Edition CE are both products of GitLab, Inc. GitLab Enterprise Edition is a content management system. GitLab Enterprise Edition is a content management system. A security vulnerability exists in GitLab Enterprise Edition and GitLab Community...