Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

628 matches found

Debian CVE
Debian CVEadded 2020/06/19 10:11 p.m.26 views

CVE-2020-13261

Removed by vendor...

5.3CVSS5.8AI score0.00877EPSS
Exploits0
Debian CVE
Debian CVEadded 2020/06/19 9:51 p.m.20 views

CVE-2020-13273

Removed by vendor...

7.8CVSS7.1AI score0.01187EPSS
Exploits0
Debian CVE
Debian CVEadded 2020/06/19 9:37 p.m.16 views

CVE-2020-13276

Removed by vendor...

7.4CVSS5.8AI score0.00674EPSS
Exploits0
UbuntuCve
UbuntuCveadded 2020/06/19 6:15 p.m.28 views

CVE-2020-13277

An authorization issue in the mirroring logic allowed read access to private repositories in GitLab CE/EE 10.6 and later through 13.0.5...

6.5CVSS6.6AI score0.01848EPSS
Exploits0References5
Prion
Prionadded 2020/06/19 6:15 p.m.18 views

Authorization

An authorization issue in the mirroring logic allowed read access to private repositories in GitLab CE/EE 10.6 and later through 13.0.5...

4CVSS6AI score0.01848EPSS
Exploits0References3Affected Software1
NVD
NVDadded 2020/06/10 3:15 p.m.15 views

CVE-2020-13268

A specially crafted request could be used to confirm the existence of files hosted on object storage services, without disclosing their contents. This vulnerability affects GitLab CE/EE 12.10 and later through 13.0.1...

5.3CVSS0.01071EPSS
Exploits0References3
Prion
Prionadded 2020/06/10 3:15 p.m.14 views

Design/Logic Flaw

A specially crafted request could be used to confirm the existence of files hosted on object storage services, without disclosing their contents. This vulnerability affects GitLab CE/EE 12.10 and later through 13.0.1...

5CVSS5AI score0.01071EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVEadded 2020/06/10 2:38 p.m.20 views

CVE-2020-13269

Removed by vendor...

6.1CVSS6.3AI score0.0175EPSS
Exploits0
Cvelist
Cvelistadded 2020/06/10 2:32 p.m.16 views

CVE-2020-13268

A specially crafted request could be used to confirm the existence of files hosted on object storage services, without disclosing their contents. This vulnerability affects GitLab CE/EE 12.10 and later through 13.0.1...

5.3CVSS5.2AI score0.01071EPSS
Exploits0References3
Debian CVE
Debian CVEadded 2020/06/10 2:32 p.m.24 views

CVE-2020-13268

Removed by vendor...

5.3CVSS6AI score0.01071EPSS
Exploits0
NVD
NVDadded 2020/06/09 4:15 p.m.16 views

CVE-2020-13266

Insecure authorization in Project Deploy Keys in GitLab CE/EE 12.8 and later through 13.0.1 allows users to update permissions of other users' deploy keys under certain conditions...

4.3CVSS4.3AI score0.00554EPSS
Exploits0References2
UbuntuCve
UbuntuCveadded 2020/03/10 2:15 p.m.23 views

CVE-2019-12428

An issue was discovered in GitLab Community and Enterprise Edition 6.8 through 11.11. Users could bypass the mandatory external authentication provider sign-in restrictions by sending a specially crafted request. It has Improper Authorization...

9.8CVSS7.2AI score0.01352EPSS
Exploits0References2
NVD
NVDadded 2020/01/28 3:15 a.m.18 views

CVE-2019-15586

A XSS exists in Gitlab CE/EE 12.1.10 in the Mermaid plugin...

6.1CVSS5.9AI score0.00763EPSS
Exploits0References2
UbuntuCve
UbuntuCveadded 2020/01/28 3:15 a.m.29 views

CVE-2019-5466

An IDOR was discovered in GitLab CE/EE 11.5 and later that allowed new merge requests endpoint to disclose label names...

4.3CVSS5.8AI score0.00969EPSS
Exploits1References2
UbuntuCve
UbuntuCveadded 2020/01/28 3:15 a.m.23 views

CVE-2019-15586

A XSS exists in Gitlab CE/EE 12.1.10 in the Mermaid plugin...

6.1CVSS6.3AI score0.00763EPSS
Exploits0References4
UbuntuCve
UbuntuCveadded 2020/01/28 3:15 a.m.25 views

CVE-2019-15578

An information disclosure exists in 12.3.2, 12.2.6, and 12.1.12 for GitLab Community Edition CE and Enterprise Edition EE. The path of a private project, that used to be public, would be disclosed in the unsubscribe email link of issues and merge requests...

5.3CVSS6AI score0.01019EPSS
Exploits0References4
Debian CVE
Debian CVEadded 2020/01/28 2:14 a.m.24 views

CVE-2019-15586

Removed by vendor...

6.1CVSS6.4AI score0.00763EPSS
Exploits0
Debian CVE
Debian CVEadded 2020/01/13 7:59 p.m.22 views

CVE-2019-20146

Removed by vendor...

5.3CVSS6AI score0.01107EPSS
Exploits0
UbuntuCve
UbuntuCveadded 2019/12/18 9:15 p.m.14 views

CVE-2019-15576

An information disclosure vulnerability exists in GitLab CE/EE v12.3.2, v12.2.6, and v12.1.12 that allowed an attacker to view private system notes from a GraphQL endpoint...

7.5CVSS7.1AI score0.01852EPSS
Exploits1References2
UbuntuCve
UbuntuCveadded 2019/12/18 9:15 p.m.24 views

CVE-2019-15577

An information disclosure vulnerability exists in GitLab CE/EE v12.3.2, v12.2.6, and v12.1.12 that allowed project milestones to be disclosed via groups browsing...

4.3CVSS5.8AI score0.00659EPSS
Exploits1References2
Rows per page
Query Builder