Lucene search
K

13 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.13 views

EUVD-2022-43113

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.01216EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/05/24 12:0 a.m.4 views

GitLab Community Edition和GitLab Enterprise Edition 安全漏洞

GitLab Enterprise Edition EE and GitLab Community Edition CE are both products of GitLab, Inc. GitLab Enterprise Edition is a content management system. GitLab Enterprise Edition is a content management system. A security vulnerability exists in GitLab Community Edition and GitLab Enterprise...

5.3CVSS6.3AI score0.00366EPSS
Exploits1References4
OSV
OSV
added 2024/03/06 11:23 a.m.22 views

BIT-GITLAB-2020-11506

An issue was discovered in GitLab 10.7.0 and later through 12.9.2. A Workhorse bypass could lead to job artifact uploads and file disclosure Exposure of Sensitive Information via request smuggling...

7.5CVSS7.1AI score0.01174EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2023/02/13 11:15 p.m.23 views

CVE-2022-3759

An issue has been discovered in GitLab CE/EE affecting all versions starting from 14.3 before 15.6.7, all versions starting from 15.7 before 15.7.6, all versions starting from 15.8 before 15.8.1. An attacker may upload a crafted CI job artifact zip file in a project that uses dynamic child...

7.5CVSS6.9AI score0.01216EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2023/02/13 12:0 a.m.24 views

CVE-2022-3759

Removed by vendor...

7.5CVSS7.1AI score0.01216EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2023/02/13 12:0 a.m.4 views

CVE-2022-3759

An issue has been discovered in GitLab CE/EE affecting all versions starting from 14.3 before 15.6.7, all versions starting from 15.7 before 15.7.6, all versions starting from 15.8 before 15.8.1. An attacker may upload a crafted CI job artifact zip file in a project that uses dynamic child...

4.3CVSS7.6AI score0.01216EPSS
Exploits0References3
FreeBSD
FreeBSD
added 2023/01/31 12:0 a.m.23 views

Gitlab -- Multiple Vulnerabilities

Gitlab reports: Denial of Service via arbitrarily large Issue descriptions CSRF via file upload allows an attacker to take over a repository Sidekiq background job DoS by uploading malicious CI job artifact zips Sidekiq background job DoS by uploading a malicious Helm package...

6.5CVSS7.1AI score0.01247EPSS
Exploits0References1
NVD
NVD
added 2020/04/22 8:15 p.m.17 views

CVE-2020-11506

An issue was discovered in GitLab 10.7.0 and later through 12.9.2. A Workhorse bypass could lead to job artifact uploads and file disclosure Exposure of Sensitive Information via request smuggling...

7.5CVSS7.2AI score0.01174EPSS
Exploits0References2
OSV
OSV
added 2020/04/22 8:15 p.m.17 views

CVE-2020-11506

An issue was discovered in GitLab 10.7.0 and later through 12.9.2. A Workhorse bypass could lead to job artifact uploads and file disclosure Exposure of Sensitive Information via request smuggling...

7.5CVSS6.4AI score
Exploits0References2
Prion
Prion
added 2020/04/22 8:15 p.m.20 views

Arbitrary file deletion

An issue was discovered in GitLab 10.7.0 and later through 12.9.2. A Workhorse bypass could lead to job artifact uploads and file disclosure Exposure of Sensitive Information via request smuggling...

5CVSS7.2AI score0.01174EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2020/04/22 7:50 p.m.74 views

CVE-2020-11506

CVE-2020-11506 affects GitLab 10.7.0 through 12.9.2. A Workhorse bypass could enable job artifact uploads and disclosure of sensitive information via request smuggling. Subcomponents implicated: GitLab Workhorse; root cause details are not explicitly provided in the included documents beyond the ...

7.5CVSS7.1AI score0.01174EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2020/04/16 12:0 a.m.30 views

FreeBSD : Gitlab -- Multiple Vulnerabilities (570706ff-7ee0-11ea-bd0b-001b217b3468)

Gitlab reports : NuGet Package and File Disclosure through GitLab Workhorse Job Artifact Uploads and File Disclosure through GitLab Workhorse Incorrect membership following group removal Logging of Praefect tokens Update Rack dependency Update OpenSSL dependency C Tenable Network Security, Inc. T...

7.5CVSS6.8AI score0.01174EPSS
Exploits0References6
FreeBSD
FreeBSD
added 2020/04/14 12:0 a.m.36 views

Gitlab -- Multiple Vulnerabilities

Gitlab reports: NuGet Package and File Disclosure through GitLab Workhorse Job Artifact Uploads and File Disclosure through GitLab Workhorse Incorrect membership following group removal Logging of Praefect tokens Update Rack dependency Update OpenSSL dependency...

7.5CVSS2.9AI score0.01174EPSS
Exploits0References1
Rows per page
Query Builder