Lucene search
K

1982 matches found

CNVD
CNVD
added 2019/11/07 12:0 a.m.4 views

GitLab has an unspecified vulnerability (CNVD-2019-42888)

GitLab is a Ruby on Rails-developed, self-hosted, Git version control system project repository application from the American company GitLab. The program can be used to access a project's file contents, commit history, bug lists, and more. A security vulnerability exists in GitLab Community and...

4.3CVSS6.7AI score0.00587EPSS
Exploits0References1
CNVD
CNVD
added 2019/09/11 12:0 a.m.4 views

GitLab Input Validation Error Vulnerability (CNVD-2020-20441)

GitLab is a Ruby on Rails-developed, self-hosted, Git version control system project repository application from the American company GitLab. The program can be used to access a project's file contents, commit history, bug lists, and more. A security vulnerability exists in GitLab Community and...

5.8CVSS6.7AI score0.01113EPSS
Exploits1References1
OSV
OSV
added 2019/09/09 8:15 p.m.8 views

UBUNTU-CVE-2019-6795

An issue was discovered in GitLab Community and Enterprise Edition before 11.5.8, 11.6.x before 11.6.6, and 11.7.x before 11.7.1. It has Insufficient Visual Distinction of Homoglyphs Presented to a User. IDN homographs and RTLO characters are rendered to unicode, which could be used for social...

5.4CVSS6.6AI score0.01113EPSS
Exploits1References3
CNVD
CNVD
added 2019/09/03 12:0 a.m.4 views

GitLab Information Disclosure Vulnerability (CNVD-2019-30785)

GitLab is a Ruby on Rails-developed, self-hosted, Git version control system project repository application from the American company GitLab. The program can be used to access a project's file contents, commit history, bug lists, and more. A security vulnerability exists in GitLab Enterprise and...

5.3CVSS6.7AI score0.01544EPSS
Exploits0References1
CNVD
CNVD
added 2019/09/03 12:0 a.m.3 views

Unspecified Vulnerability in GitLab (CNVD-2019-30487)

GitLab is a Ruby on Rails-developed, self-hosted, Git version control system project repository application from the American company GitLab. The program can be used to access a project's file contents, commit history, bug lists, and more. A security vulnerability exists in GitLab Enterprise and...

7.5CVSS6.4AI score0.0173EPSS
Exploits0References1
CNVD
CNVD
added 2019/09/03 12:0 a.m.2 views

GitLab has an unspecified vulnerability (CNVD-2019-30489)

GitLab is a Ruby on Rails-developed, self-hosted, Git version control system project repository application from the American company GitLab. The program can be used to access a project's file contents, commit history, bug lists, and more. A security vulnerability exists in GitLab Enterprise and...

6.5CVSS6.8AI score0.01394EPSS
Exploits0References1
CNVD
CNVD
added 2019/09/03 12:0 a.m.4 views

Unspecified Vulnerability in GitLab (CNVD-2019-30488)

GitLab is a Ruby on Rails-developed, self-hosted, Git version control system project repository application from the American company GitLab. The program can be used to access a project's file contents, commit history, bug lists, and more. A security vulnerability exists in GitLab Enterprise and...

5.3CVSS6.8AI score0.01271EPSS
Exploits0References1
CNVD
CNVD
added 2019/09/03 12:0 a.m.4 views

GitLab Information Disclosure Vulnerability (CNVD-2019-30783)

GitLab is a Ruby on Rails-developed, self-hosted, Git version control system project repository application from the American company GitLab. The program can be used to access a project's file contents, commit history, bug lists, and more. A security vulnerability exists in GitLab Enterprise and...

5.3CVSS6.6AI score0.01608EPSS
Exploits0References1
CNVD
CNVD
added 2019/07/12 12:0 a.m.2 views

GitLab Competitive Conditions Vulnerability

GitLab is a Ruby on Rails development , Git version control system project repository application . The program can be used to access the contents of the project's files, commit history, bug lists, and more. A competitive conditions vulnerability exists in GitLab versions 8.17 and later Community...

5.9CVSS7.1AI score0.00925EPSS
Exploits0References1
CNVD
CNVD
added 2019/07/10 12:0 a.m.3 views

Unspecified Vulnerability in GitLab (CNVD-2020-22023)

GitLab is a Ruby on Rails-developed, self-hosted, Git version control system project repository application from the American company GitLab. The program can be used to access a project's file contents, commit history, bug lists, and more. A security vulnerability exists in GitLab Community and...

5.3CVSS6.7AI score0.01107EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2019/04/17 5:29 p.m.34 views

CVE-2019-9172

An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. It allows Information Exposure issue 2 of 5...

5.9CVSS6.6AI score0.01649EPSS
Exploits1References2
CNVD
CNVD
added 2019/03/26 12:0 a.m.3 views

GitLab Directory Traversal Vulnerability (CNVD-2019-08323)

GitLab is a Ruby on Rails-developed, self-hosted, Git version control system project repository application from the American company GitLab. The program can be used to access a project's file contents, commit history, bug lists, and more. A security vulnerability exists in GitLab community and...

7.5CVSS6.6AI score0.02173EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2018/10/05 12:0 a.m.518 views

Gitlab -- multiple vulnerabilities

Gitlab reports: Merge request information disclosure Private project namespace information disclosure Gitlab Flavored Markdown API information disclosure...

7.5CVSS1.7AI score0.01166EPSS
Exploits2References1
OSV
OSV
added 2018/10/03 4:29 p.m.4 views

UBUNTU-CVE-2018-16051

An issue was discovered in GitLab Community and Enterprise Edition before 11.0.6, 11.1.x before 11.1.5, and 11.2.x before 11.2.2. There is Orphaned Upload Files Exposure...

6.5CVSS6.8AI score0.01157EPSS
Exploits1References4
CNVD
CNVD
added 2018/07/27 12:0 a.m.3 views

GitLab CE and EE Cross-Site Scripting Vulnerability (CNVD-2019-06642)

GitLab is a set of open source applications developed using Ruby on Rails to implement a self-hosted Git version control system project repository, which has similar functionality to Github for accessing the contents of a project's files, commit history, bug lists, and more. A cross-site scriptin...

5.4CVSS5.3AI score0.0078EPSS
Exploits1References1
Debian CVE
Debian CVE
added 2018/03/21 8:0 p.m.28 views

CVE-2018-3710

Removed by vendor...

7.8CVSS7.2AI score0.02903EPSS
Exploits0
OSV
OSV
added 2017/08/14 9:29 p.m.8 views

CVE-2017-12426

GitLab Community Edition CE and Enterprise Edition EE before 8.17.8, 9.0.x before 9.0.13, 9.1.x before 9.1.10, 9.2.x before 9.2.10, 9.3.x before 9.3.10, and 9.4.x before 9.4.4 might allow remote attackers to execute arbitrary code via a crafted SSH URL in a project import...

8.8CVSS8.7AI score
Exploits0References2
OSV
OSV
added 2017/03/28 2:59 a.m.7 views

CVE-2016-9469

Multiple versions of GitLab expose a dangerous method to any authenticated user that could lead to the deletion of all Issue and MergeRequest objects on a GitLab instance. For GitLab instances with publicly available projects this vulnerability could be exploited by an unauthenticated user. A fix...

8.2CVSS5.6AI score0.02403EPSS
Exploits1References6
Hacker One
Hacker One
added 2017/03/13 4:17 p.m.27 views

GitLab: Gitlab.com is vulnerable to reverse tabnabbing via AsciiDoc links. (#3)

Dear GitLab bug bounty team, Summary --- Gitlab.com is vulnerable to reverse tabnabbing in AsciiDoc files. Why does this vulnerability exist? --- In AsciiDoc the following http://example.comReverse Tabnabbing^ is equivalent to Reverse Tabnabbing. How can this exploited? --- Same scenario as...

1.4AI score
Exploits0
OSV
OSV
added 2017/01/23 9:59 p.m.10 views

CVE-2016-4340

The impersonate feature in Gitlab 8.7.0, 8.6.0 through 8.6.7, 8.5.0 through 8.5.11, 8.4.0 through 8.4.9, 8.3.0 through 8.3.8, and 8.2.0 through 8.2.4 allows remote authenticated users to "log in" as any other user via unspecified vectors...

8.8CVSS8.2AI score0.10143EPSS
Exploits5References4
Rows per page
Query Builder