Lucene search
K

9 matches found

OSV
OSV
added 2024/03/06 11:13 a.m.14 views

BIT-GITLAB-2022-3758

An issue has been discovered in GitLab affecting all versions starting from 15.5 before 15.7.8, all versions starting from 15.8 before 15.8.4, all versions starting from 15.9 before 15.9.2. Due to improper permissions checks an unauthorised user was able to read, add or edit a users private snipp...

5.4CVSS5.3AI score0.00577EPSS
Exploits0References4
Veracode
Veracode
added 2023/07/22 9:31 p.m.21 views

Authorization Bypass

phpLiteAdmin is vulnerable to Authorization Bypasses. Due to improper permissions checks an authenticated attacker is able to perform unauthorized operations such as read, add or edit a user's private snippet...

5.4CVSS6.7AI score0.00577EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2023/03/09 12:0 a.m.30 views

CVE-2022-3758

An issue has been discovered in GitLab affecting all versions starting from 15.5 before 15.7.8, all versions starting from 15.8 before 15.8.4, all versions starting from 15.9 before 15.9.2. Due to improper permissions checks an unauthorised user was able to read, add or edit a users private snipp...

5.4CVSS5.8AI score0.00577EPSS
Exploits0References3
CVE
CVE
added 2023/03/09 12:0 a.m.80 views

CVE-2022-3758

CVE-2022-3758 affects GitLab releases with multiple version ranges: 15.5–15.7.7, 15.8–15.8.3, and 15.9–15.9.1. The issue stems from improper permissions checks that allow an unauthorised user to read, add or edit a user’s private snippet. The impact is limited to read/edit exposure of private sni...

5.4CVSS5.2AI score0.00577EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2023/03/09 12:0 a.m.24 views

CVE-2022-3758

An issue has been discovered in GitLab affecting all versions starting from 15.5 before 15.7.8, all versions starting from 15.8 before 15.8.4, all versions starting from 15.9 before 15.9.2. Due to improper permissions checks an unauthorised user was able to read, add or edit a users private snipp...

5.4CVSS5.7AI score0.00577EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2023/03/09 12:0 a.m.19 views

CVE-2022-3758

Removed by vendor...

5.4CVSS6AI score0.00577EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2020/03/10 3:15 p.m.19 views

CVE-2019-13001

An issue was discovered in GitLab Community and Enterprise Edition 11.9 and later through 12.0.2. GitLab Snippets were vulnerable to an authorization issue that allowed unauthorized users to add comments to a private snippet. It allows authentication bypass...

4.3CVSS5.9AI score0.00675EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/07/05 12:0 a.m.33 views

FreeBSD : Gitlab -- Multiple Vulnerabilities (4ea507d1-9da8-11e9-a759-001b217b3468)

Gitlab reports : Ability to Write a Note to a Private Snippet Recent Pipeline Information Disclosed to Unauthorised Users Resource Exhaustion Attack Error Caused by Encoded Characters in Comments Authorization Issues in GraphQL Number of Merge Requests was Accessible Enabling One of the Service...

7.5CVSS5.1AI score0.01403EPSS
Exploits0References13
FreeBSD
FreeBSD
added 2019/07/03 12:0 a.m.152 views

Gitlab -- Multiple Vulnerabilities

Gitlab reports: Ability to Write a Note to a Private Snippet Recent Pipeline Information Disclosed to Unauthorised Users Resource Exhaustion Attack Error Caused by Encoded Characters in Comments Authorization Issues in GraphQL Number of Merge Requests was Accessible Enabling One of the Service...

7.5CVSS2AI score0.01403EPSS
Exploits0References1
Rows per page
Query Builder