CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4 matches found

CNVD•added 2018/03/22 12:0 a.m.•1 views

Gitlab labels component cross-site scripting vulnerability

GitLab is a set of open source applications developed using Ruby on Rails to implement a self-hosted Git version control system project repository , which has features similar to Github , you can access the project's file content , commit history , bug lists , etc. GitLab Community Edition CE is...

6.1CVSS6.2AI score0.00076EPSS

Exploits0References1

Prion•added 2018/03/21 8:29 p.m.•17 views

Cross site scripting

Gitlab Community Edition version 10.2.4 is vulnerable to lack of input validation in the labels component resulting in persistent cross site scripting...

4.3CVSS6AI score0.00076EPSS

Exploits0References2Affected Software1

Debian CVE•added 2018/03/21 8:0 p.m.•21 views

CVE-2017-0924

Removed by vendor...

6.1CVSS6.4AI score0.00076EPSS

Exploits0

CVE•added 2018/03/21 8:0 p.m.•68 views

CVE-2017-0924

CVE-2017-0924 affects GitLab Community Edition 10.2.4, with a lack of input validation in the labels component that enables persistent cross-site scripting (XSS). Multiple sources (NVD entry for CVE-2017-0924, OpenVAS NASL, CNVD entry) corroborate that the vulnerability is tied to the labels comp...

6.1CVSS5.9AI score0.00076EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by