Lucene search
K

45 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-5569

Malware in sbrugna...

8.8CVSS8.5AI score0.01265EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-4590

Malware in sbrugna...

5.3CVSS5.3AI score0.00769EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2018-9698

Malware in sbrugna...

7.8CVSS5.9AI score0.00375EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-24528

Malicious code in bioql PyPI...

5.3CVSS5.4AI score0.01012EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2020-13309

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. GitLab was vulnerable to a blind SSRF attack through the repository mirrori...

8.8CVSS7.8AI score0.01265EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2022-1188

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue has been discovered in GitLab CE/EE affecting all versions starting from 12.1 before 14.7.7, all versions starting from 14.8 before 14.8.5, all version...

5.3CVSS5.5AI score0.01012EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2020-12277

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GitLab 10.8 through 12.9 has a vulnerability that allows someone to mirror a repository even if the feature is not activated. CVE-2020-12277 Note that Nessus...

5.3CVSS5.7AI score0.00769EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/22 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2024-12380

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in GitLab EE/CE affecting all versions starting from 11.5 before 17.7.7, all versions starting from 17.8 before 17.8.5, all versions...

7.5CVSS5.5AI score0.00533EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 10:12 p.m.5 views

CVE-2022-1188

An issue has been discovered in GitLab CE/EE affecting all versions starting from 12.1 before 14.7.7, all versions starting from 14.8 before 14.8.5, all versions starting from 14.9 before 14.9.2 where a blind SSRF attack through the repository mirroring feature was possible...

5.3CVSS6.5AI score0.01012EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:16 p.m.4 views

CVE-2020-13309

A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. GitLab was vulnerable to a blind SSRF attack through the repository mirroring feature...

8.8CVSS6.4AI score0.01265EPSS
Exploits0
OSV
OSV
added 2025/03/15 7:42 a.m.127 views

BIT-GITLAB-2024-12380 Generation of Error Message Containing Sensitive Information in GitLab

An issue was discovered in GitLab EE/CE affecting all versions starting from 11.5 before 17.7.7, all versions starting from 17.8 before 17.8.5, all versions starting from 17.9 before 17.9.2. Certain user inputs in repository mirroring settings could potentially expose sensitive authentication...

7.5CVSS4.8AI score0.00533EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/03/15 6:1 a.m.9 views

CVE-2024-12380

An issue was discovered in GitLab EE/CE affecting all versions starting from 11.5 before 17.7.7, all versions starting from 17.8 before 17.8.5, all versions starting from 17.9 before 17.9.2. Certain user inputs in repository mirroring settings could potentially expose sensitive authentication...

7.5CVSS6.5AI score0.00533EPSS
Exploits0References1
NVD
NVD
added 2025/03/13 6:15 a.m.13 views

CVE-2024-12380

An issue was discovered in GitLab EE/CE affecting all versions starting from 11.5 before 17.7.7, all versions starting from 17.8 before 17.8.5, all versions starting from 17.9 before 17.9.2. Certain user inputs in repository mirroring settings could potentially expose sensitive authentication...

7.5CVSS0.00533EPSS
Exploits0References2
OSV
OSV
added 2025/03/13 6:15 a.m.1 views

UBUNTU-CVE-2024-12380

An issue was discovered in GitLab EE/CE affecting all versions starting from 11.5 before 17.7.7, all versions starting from 17.8 before 17.8.5, all versions starting from 17.9 before 17.9.2. Certain user inputs in repository mirroring settings could potentially expose sensitive authentication...

7.5CVSS5.8AI score0.00533EPSS
Exploits0References4
CVE
CVE
added 2025/03/13 5:56 a.m.173 views

CVE-2024-12380

GitLab EE/CE vulnerable in affected releases (11.5–17.7.7; 17.8–17.8.5; 17.9–17.9.2) due to certain user inputs in repository mirroring settings that could expose sensitive authentication information. Impact: potential disclosure of credentials with network access; no user interaction required. E...

7.5CVSS4.6AI score0.00533EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2025/03/13 5:56 a.m.11 views

CVE-2024-12380 Generation of Error Message Containing Sensitive Information in GitLab

An issue was discovered in GitLab EE/CE affecting all versions starting from 11.5 before 17.7.7, all versions starting from 17.8 before 17.8.5, all versions starting from 17.9 before 17.9.2. Certain user inputs in repository mirroring settings could potentially expose sensitive authentication...

4.4CVSS6.6AI score0.00533EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2024/05/17 12:0 a.m.18 views

GitLab 1.0 < 13.1.10 / 13.2 < 13.2.8 / 13.3 < 13.3.4 (CVE-2020-13309)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. GitLab was vulnerable to a blind SSRF attack through the repository mirroring feature. CVE-2020-13309 Note that...

8.8CVSS7.8AI score0.01265EPSS
Exploits0References4
OSV
OSV
added 2024/03/06 11:22 a.m.18 views

BIT-GITLAB-2020-13309

A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. GitLab was vulnerable to a blind SSRF attack through the repository mirroring feature...

8.8CVSS8.3AI score0.01265EPSS
Exploits0References4
OSV
OSV
added 2024/03/06 11:16 a.m.23 views

BIT-GITLAB-2022-1188

An issue has been discovered in GitLab CE/EE affecting all versions starting from 12.1 before 14.7.7, all versions starting from 14.8 before 14.8.5, all versions starting from 14.9 before 14.9.2 where a blind SSRF attack through the repository mirroring feature was possible...

5.3CVSS5.2AI score0.01012EPSS
Exploits0References4
Veracode
Veracode
added 2023/07/22 10:11 p.m.18 views

Server-Side Request Forgery (SSRF)

gitlab is vulnerable to Server-Side Request Forgery SSRF. The vulnerability allows an attack to occur through the repository mirroring feature in gitlab resulting in a blind SSRF...

5.3CVSS6.9AI score0.01012EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder