CVE-2020-8113

Removed by vendor...

CVE-2019-15592

GitLab 12.2.2 and below contains a security vulnerability that allows a guest user in a private project to see the merge request ID associated to an issue via the activity timeline...

CVE-2019-15594

GitLab 11.8 and later contains a security vulnerability that allows a user to obtain details of restricted pipelines via the merge request endpoint...

CVE-2019-15594

GitLab 11.8 and later contains a security vulnerability that allows a user to obtain details of restricted pipelines via the merge request endpoint...

CVE-2019-15592

GitLab 12.2.2 and below contains a security vulnerability that allows a guest user in a private project to see the merge request ID associated to an issue via the activity timeline...

CVE-2020-7966

GitLab EE 11.11 and later through 12.7.2 allows Directory Traversal...

CVE-2020-7973

GitLab through 12.7.2 allows XSS...

Privilege escalation

A privilege escalation issue was discovered in GitLab CE/EE 9.0 and later when trigger tokens are not rotated once ownership of them has changed...

CVE-2019-20143

An issue was discovered in GitLab Community Edition CE and Enterprise Edition EE 12.6. It has Incorrect Access Control...

CVE-2019-20144

An issue was discovered in GitLab Community Edition CE and Enterprise Edition EE 10.8 through 12.6.1. It has Incorrect Access Control...

CVE-2019-15593

GitLab 12.2.3 contains a security vulnerability that allows a user to affect the availability of the service through a Denial of Service attack in Issue Comments...

CVE-2019-15593

Removed by vendor...

CVE-2019-6795

Removed by vendor...

CVE-2019-6794

CVE-2019-6794 affects GitLab Community and Enterprise Edition prior to 11.5.8, 11.6.x prior to 11.6.6, and 11.7.x prior to 11.7.1. The issue allows information disclosure where a project guest user can view the last commit status of the default branch. The root cause details are not fully expande...

Gitlab -- Arbitrary repo read in Gitlab project import

Gitlab reports: Arbitrary repo read in Gitlab project import...

GitLab: Bypass of GitLab CI runner slash fix in YAML validation

Hi Gitlab Security, I notice the bug 301432 that Jobert reported earlier is could be bypassed by setting variable in environment. The reason is that the fix in place preventing url normalization is performed by doing the YAML validation, however this could be bypassed by setting the environment...

GitLab: Unauthenticated blind SSRF in OAuth Jira authorization controller

The Oauth::Jira::AuthorizationsControlleraccesstoken endpoint is vulnerable to a blind SSRF vulnerability. The vulnerability allows an attacker to make arbitrary HTTP/HTTPS requests inside a GitLab instance's network. Proof of concept To reproduce the vulnerability, follow the steps below. - spin...

Debian DSA-4145-1 : gitlab - security update

Several vulnerabilities have been discovered in Gitlab, a software platform to collaborate on code : - CVE-2017-0915/ CVE-2018-3710 Arbitrary code execution in project import. - CVE-2017-0916 Command injection via Webhooks. - CVE-2017-0917 Cross-site scripting in CI job output. - CVE-2017-0918...

GitLab -- Various security issues

GitLab reports: Please reference CVE/URL list for details...

CVE-2017-0882

Multiple versions of GitLab expose sensitive user credentials when assigning a user to an issue or merge request. A fix was included in versions 8.15.8, 8.16.7, and 8.17.4, which were released on March 20th 2017 at 23:59 UTC...