Lucene search
K

10 matches found

OSV
OSV
added 2026/06/29 6:1 a.m.5 views

BIT-GITLAB-2026-2238 Missing Authorization in GitLab

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.5 before 18.11.6, 19.0 before 19.0.3, and 19.1 before 19.1.1 that under certain conditions could have allowed an unauthenticated user to view confidential issue references on public projects due to improper authorizatio...

5.3CVSS5.8AI score0.00275EPSS
Exploits0References4
NVD
NVD
added 2026/06/25 5:16 a.m.10 views

CVE-2026-2238

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.5 before 18.11.6, 19.0 before 19.0.3, and 19.1 before 19.1.1 that under certain conditions could have allowed an unauthenticated user to view confidential issue references on public projects due to improper authorizatio...

5.3CVSS0.00275EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/25 4:34 a.m.5 views

EUVD-2026-39177

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.5 before 18.11.6, 19.0 before 19.0.3, and 19.1 before 19.1.1 that under certain conditions could have allowed an unauthenticated user to view confidential issue references on public projects due to improper authorizatio...

5.3CVSS5.9AI score0.00275EPSS
Exploits0References3
CVE
CVE
added 2026/06/25 4:34 a.m.110 views

CVE-2026-2238

CVE-2026-2238 affects GitLab CE/EE, impacting all versions from 17.5 before 18.11.6, 19.0 before 19.0.3, and 19.1 before 19.1.1. An unauthorized user could view confidential issue references on public projects due to improper authorization checks. The issue is mitigated in GitLab releases 18.11.6...

5.3CVSS5.9AI score0.00275EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2026/06/25 12:0 a.m.15 views

PT-2026-52202

Name of the Vulnerable Software and Affected Versions GitLab CE/EE versions 17.5 through 18.11.5 GitLab CE/EE versions 19.0 through 19.0.2 GitLab CE/EE versions 19.1 through 19.1.0 Description Improper authorization checks could allow an unauthenticated user to view confidential issue references ...

5.3CVSS5.8AI score0.00275EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/06/25 12:0 a.m.10 views

GitLab 17.5 < 18.11.6 / 19.0 < 19.0.3 / 19.1 < 19.1.1 (CVE-2026-2238)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.5 before 18.11.6, 19.0 before 19.0.3, and 19.1 before 19.1.1 that under certain conditions could have allowed an...

5.3CVSS5.9AI score0.00275EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2024-2279

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.7 to 16.8.6 all versions starting from 16.9 before 16.9.4, all versions...

8.7CVSS5.7AI score0.0058EPSS
Exploits1References2
OSV
OSV
added 2024/04/12 1:15 a.m.5 views

UBUNTU-CVE-2024-2279

An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.7 to 16.8.6 all versions starting from 16.9 before 16.9.4, all versions starting from 16.10 before 16.10.2. Using the autocomplete for issues references feature a crafted payload may lead to a stored XSS, allowin...

8.7CVSS5.9AI score0.0058EPSS
Exploits1References2
CVE
CVE
added 2024/04/12 12:53 a.m.79 views

CVE-2024-2279

CVE-2024-2279 affects GitLab CE/EE across multiple release lines: 16.7–16.8.6; 16.9 prior to 16.9.4; 16.10 prior to 16.10.2. The issue arises from the autocomplete for issues references feature, where a crafted payload can trigger a stored XSS, enabling an attacker to perform arbitrary actions on...

8.7CVSS6.2AI score0.0058EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2024/04/10 12:0 a.m.4 views

PT-2024-19565 · Gitlab · Gitlab Ce/Ee +1

Name of the Vulnerable Software and Affected Versions: GitLab CE/EE versions 16.7 through 16.8.6 GitLab CE/EE versions 16.9 through 16.9.3 GitLab CE/EE versions 16.10 through 16.10.1 Description: An issue has been discovered in GitLab CE/EE, where using the autocomplete for issues references...

8.7CVSS6.6AI score0.0058EPSS
Exploits1References13
Rows per page
Query Builder