Lucene search
K

10 matches found

Positive Technologies
Positive Technologies
added 2026/01/14 12:0 a.m.5 views

PT-2026-2978

Name of the Vulnerable Software and Affected Versions Drupal Group invite versions 0.0.0 through 2.3.8 Drupal Group invite versions 3.0.0 through 3.0.3 Drupal Group invite versions 4.0.0 through 4.0.3 Description An improper check for unusual or exceptional conditions exists in the Group invite...

5.3CVSS5.5AI score0.00197EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2020-12474

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Telegram Desktop through 2.0.1, Telegram through 6.0.1 for Android, and Telegram through 6.0.1 for iOS allow an IDN Homograph attack via Punycode in a public UR...

6.5CVSS6.4AI score0.02527EPSS
Exploits0References2
NVD
NVD
added 2025/07/10 9:15 a.m.6 views

CVE-2025-4972

An issue has been discovered in GitLab EE affecting all versions from 18.0 before 18.0.4 and 18.1 before 18.1.2 that could have allowed authenticated users with invitation privileges to bypass group-level user invitation restrictions by manipulating group invitation functionality...

2.7CVSS0.00316EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/07/10 8:30 a.m.10 views

CVE-2025-4972 Incorrect Authorization in GitLab

An issue has been discovered in GitLab EE affecting all versions from 18.0 before 18.0.4 and 18.1 before 18.1.2 that could have allowed authenticated users with invitation privileges to bypass group-level user invitation restrictions by manipulating group invitation functionality...

2.7CVSS0.00316EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/07/10 8:30 a.m.2 views

CVE-2025-4972 Incorrect Authorization in GitLab

An issue has been discovered in GitLab EE affecting all versions from 18.0 before 18.0.4 and 18.1 before 18.1.2 that could have allowed authenticated users with invitation privileges to bypass group-level user invitation restrictions by manipulating group invitation functionality...

2.7CVSS6.7AI score0.00316EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/07/10 12:0 a.m.3 views

GitLab Enterprise Edition 安全漏洞

GitLab Enterprise Edition EE is a content management system from GitLab, Inc. in the United States. A security vulnerability exists in GitLab Enterprise Edition versions prior to 18.0 through 18.0.4 and 18.1 through 18.1.2, which stems from an authentication maintainer potentially bypassing...

2.7CVSS6.5AI score0.00309EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/22 10:2 p.m.4 views

CVE-2022-1981

An issue has been discovered in GitLab EE affecting all versions starting from 12.2 prior to 14.10.5, 15.0 prior to 15.0.4, and 15.1 prior to 15.1.1. In GitLab, if a group enables the setting to restrict access to users belonging to specific domains, that allow-list may be bypassed if a Maintaine...

3.5CVSS6.3AI score0.00738EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2022/07/01 4:5 p.m.28 views

CVE-2022-1981

Removed by vendor...

3.5CVSS5.8AI score0.00738EPSS
Exploits0
OSV
OSV
added 2021/08/25 7:15 p.m.1 views

UBUNTU-CVE-2021-22243

Under specialized conditions, GitLab CE/EE versions starting 7.10 may allow existing GitLab users to use an invite URL meant for another email address to gain access into a group...

5CVSS5.8AI score0.00505EPSS
Exploits0References4
CNVD
CNVD
added 2017/06/08 12:0 a.m.2 views

Unspecified Vulnerability in Zulip Server

Zulip Server is a set of open source group chat application written in Python based on the Django framework . A security vulnerability exists in the implementation of the invitebyadminsonly setting in Zulip Server 1.5.1 and earlier versions. An attacker can exploit the vulnerability to invite oth...

6.5CVSS6.7AI score0.01278EPSS
Exploits0References1
Rows per page
Query Builder