Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

35 matches found

Snyk
Snykadded 2026/03/06 7:14 a.m.1 views

Malicious Package

Overview @woody-mrs-potato/utils-banking is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and th...

9.8CVSS5.4AI score
Exploits0References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2015-0881

Malware in sbrugna...

4.3CVSS6.4AI score0.00248EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2015-0878

Malware in sbrugna...

7.5CVSS6.4AI score0.01696EPSS
Exploits0References4
Cvelist
Cvelistadded 2025/05/23 12:31 p.m.7 views

CVE-2024-9163 User Interface (UI) Misrepresentation of Critical Information in GitLab

A business logic error in GitLab CE/EE affecting all versions starting from 12.1 prior to 17.10.7, 17.11 prior to 17.11.3 and 18.0 prior to 18.0.1 where an attacker can cause a branch name confusion in confidential MRs...

3.5CVSS0.00053EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2024/05/17 12:0 a.m.21 views

GitLab 15.7 < 15.8.5 / 15.9 < 15.9.4 / 15.10 < 15.10.1 (CVE-2022-4143)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab affecting all versions starting from 15.7 before 15.8.5, from 15.9 before 15.9.4, and from 15.10 before 15.10.1 that allows for crafted, unapproved MRs to be...

6.4CVSS5.9AI score0.00213EPSS
Exploits1References4
OSV
OSVadded 2024/03/06 11:13 a.m.11 views

BIT-GITLAB-2022-4143

An issue has been discovered in GitLab affecting all versions starting from 15.7 before 15.8.5, from 15.9 before 15.9.4, and from 15.10 before 15.10.1 that allows for crafted, unapproved MRs to be introduced and merged without authorization...

6.4CVSS5.4AI score0.00213EPSS
Exploits1References4
OSV
OSVadded 2024/03/06 10:53 a.m.15 views

BIT-GITLAB-2024-0456 Direct Request ('Forced Browsing') in GitLab

An authorization vulnerability exists in GitLab versions 14.0 prior to 16.6.6, 16.7 prior to 16.7.4, and 16.8 prior to 16.8.1. An unauthorized attacker is able to assign arbitrary users to MRs that they created within the project...

4.3CVSS4.4AI score0.00159EPSS
Exploits0References3
Veracode
Veracodeadded 2024/02/02 3:26 p.m.19 views

Improper Authorization

GitLab is vulnerable to Improper Authorization. The above vulnerability is caused due to improper authorization in GitLab. An unauthorized attacker is able to assign arbitrary users to MRs that they created within the project...

4.3CVSS6.5AI score0.00159EPSS
Exploits0References3Affected Software1
Prion
Prionadded 2024/01/26 1:15 a.m.14 views

Authorization

An authorization vulnerability exists in GitLab versions 14.0 prior to 16.6.6, 16.7 prior to 16.7.4, and 16.8 prior to 16.8.1. An unauthorized attacker is able to assign arbitrary users to MRs that they created within the project...

4CVSS6.6AI score0.00159EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2024/01/26 1:2 a.m.19 views

CVE-2024-0456 Direct Request ('Forced Browsing') in GitLab

An authorization vulnerability exists in GitLab versions 14.0 prior to 16.6.6, 16.7 prior to 16.7.4, and 16.8 prior to 16.8.1. An unauthorized attacker is able to assign arbitrary users to MRs that they created within the project...

4.3CVSS5AI score0.00159EPSS
Exploits0References2
UbuntuCve
UbuntuCveadded 2024/01/26 12:0 a.m.16 views

CVE-2024-0456

An authorization vulnerability exists in GitLab versions 14.0 prior to 16.6.6, 16.7 prior to 16.7.4, and 16.8 prior to 16.8.1. An unauthorized attacker is able to assign arbitrary users to MRs that they created within the project...

4.3CVSS6AI score0.00159EPSS
Exploits0References4
Openbugbounty
Openbugbountyadded 2023/12/07 6:10 p.m.1 views

mrs-escort.com Improper Access Control vulnerability OBB-3805634

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

7AI score
Exploits0
Openbugbounty
Openbugbountyadded 2023/11/13 10:32 p.m.8 views

mrs-escort.de Improper Access Control vulnerability OBB-3779955

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.9AI score
Exploits0
Packet Storm
Packet Stormadded 2023/09/18 12:0 a.m.261 views

Karenderia MRS 5.3 Directory Traversal

==================================================================================================================================== | Title : Karenderia MRS v5.3 Directory Traversal Vulnerability | | Author : indoushka | | Tested on : windows 10 Français V.Pro / browser : Mozilla firefox...

7.1AI score
Exploits0
UbuntuCve
UbuntuCveadded 2023/06/28 9:15 p.m.12 views

CVE-2022-4143

An issue has been discovered in GitLab affecting all versions starting from 15.7 before 15.8.5, from 15.9 before 15.9.4, and from 15.10 before 15.10.1 that allows for crafted, unapproved MRs to be introduced and merged without authorization...

6.4CVSS6.1AI score0.00213EPSS
Exploits1References4
Vulnrichment
Vulnrichmentadded 2023/06/28 12:0 a.m.6 views

CVE-2022-4143

An issue has been discovered in GitLab affecting all versions starting from 15.7 before 15.8.5, from 15.9 before 15.9.4, and from 15.10 before 15.10.1 that allows for crafted, unapproved MRs to be introduced and merged without authorization...

6.4CVSS6.4AI score0.00213EPSS
Exploits1References3
Debian CVE
Debian CVEadded 2023/06/28 12:0 a.m.18 views

CVE-2022-4143

Removed by vendor...

6.4CVSS6.2AI score0.00213EPSS
Exploits1
Cvelist
Cvelistadded 2023/06/28 12:0 a.m.15 views

CVE-2022-4143

An issue has been discovered in GitLab affecting all versions starting from 15.7 before 15.8.5, from 15.9 before 15.9.4, and from 15.10 before 15.10.1 that allows for crafted, unapproved MRs to be introduced and merged without authorization...

6.4CVSS6.3AI score0.00213EPSS
Exploits1References3
Openbugbounty
Openbugbountyadded 2022/11/24 6:43 p.m.14 views

mrs-j.org Cross Site Scripting vulnerability OBB-3069750

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbountyadded 2022/03/13 3:23 a.m.13 views

mrs-j.org Cross Site Scripting vulnerability OBB-2427254

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Exploits0
Rows per page
Query Builder