Lucene search
K

15 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-57355

Malicious code in bioql PyPI...

9.8CVSS8.2AI score0.08263EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 4:28 a.m.12 views

CVE-2023-5009

An issue has been discovered in GitLab EE affecting all versions starting from 13.12 before 16.2.7, all versions starting from 16.3 before 16.3.4. It was possible for an attacker to run pipeline jobs as an arbitrary user via scheduled security scan policies. This was a bypass of CVE-2023-3932...

9.8CVSS7.1AI score0.08263EPSS
Exploits1References1
OSV
OSV
added 2024/03/06 11:1 a.m.23 views

BIT-GITLAB-2023-3932 Incorrect User Management in GitLab

An issue has been discovered in GitLab EE affecting all versions starting from 13.12 before 16.0.8, all versions starting from 16.1 before 16.1.3, all versions starting from 16.2 before 16.2.2. It was possible for an attacker to run pipeline jobs as an arbitrary user via scheduled security scan...

8.2CVSS6.9AI score0.00878EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2023/10/09 5:57 p.m.43 views

CVE-2023-3932

An issue has been discovered in GitLab EE affecting all versions starting from 13.12 before 16.0.8, all versions starting from 16.1 before 16.1.3, all versions starting from 16.2 before 16.2.2. It was possible for an attacker to run pipeline jobs as an arbitrary user via scheduled security scan...

8.2CVSS8.8AI score0.00878EPSS
Exploits1References3
NVD
NVD
added 2023/09/19 8:16 a.m.39 views

CVE-2023-5009

An issue has been discovered in GitLab EE affecting all versions starting from 13.12 before 16.2.7, all versions starting from 16.3 before 16.3.4. It was possible for an attacker to run pipeline jobs as an arbitrary user via scheduled security scan policies. This was a bypass of CVE-2023-3932...

9.8CVSS7.1AI score0.08263EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/09/19 7:1 a.m.10 views

CVE-2023-5009 Incorrect Authorization in GitLab

An issue has been discovered in GitLab EE affecting all versions starting from 13.12 before 16.2.7, all versions starting from 16.3 before 16.3.4. It was possible for an attacker to run pipeline jobs as an arbitrary user via scheduled security scan policies. This was a bypass of CVE-2023-3932...

8.2CVSS9.7AI score0.08263EPSS
Exploits0References2
CVE
CVE
added 2023/09/19 7:1 a.m.267 views

CVE-2023-5009

CVE-2023-5009 affects GitLab EE versions 13.12–before 16.2.7 and 16.3–before 16.3.4. An attacker could run pipeline jobs as an arbitrary user via scheduled security scan policies, bypassing CVE-2023-3932 and adding impact. The issue is described as a bypass of CVE-2023-3932 with additional impact...

9.8CVSS7.3AI score0.08263EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2023/09/19 12:0 a.m.6 views

PT-2023-31438 · Gitlab · Gitlab

Name of the Vulnerable Software and Affected Versions: GitLab versions 13.12 through 16.2.7 GitLab versions 16.3 through 16.3.4 Description: A critical vulnerability in GitLab allows attackers to run pipelines as other users, potentially granting access to internal repositories and closed project...

6.9AI score
Exploits0References15
Tenable Nessus
Tenable Nessus
added 2023/09/19 12:0 a.m.59 views

GitLab 13.12 < 16.2.7 / 16.3 < 16.3.4 (CVE-2023-5009)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab EE affecting all versions starting from 13.12 before 16.2.7, all versions starting from 16.3 before 16.3.4. It was possible for an attacker to run pipeline jobs ...

9.8CVSS8.3AI score0.08263EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2023/09/15 12:0 a.m.4 views

PT-2023-5448

Name of the Vulnerable Software and Affected Versions GitLab EE versions 13.12 through 16.2.7 GitLab EE versions 16.3 through 16.3.4 GitLab Community Edition CE versions 13.12 through 16.2.7 GitLab Community Edition CE versions 16.3 through 16.3.4 Description The issue is related to a flaw in...

9.8CVSS9.7AI score0.08263EPSS
Exploits0References74
Prion
Prion
added 2023/08/03 5:15 a.m.30 views

Design/Logic Flaw

An issue has been discovered in GitLab EE affecting all versions starting from 13.12 before 16.0.8, all versions starting from 16.1 before 16.1.3, all versions starting from 16.2 before 16.2.2. It was possible for an attacker to run pipeline jobs as an arbitrary user via scheduled security scan...

4CVSS7.8AI score0.00878EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2023/08/03 4:1 a.m.29 views

CVE-2023-3932 Incorrect User Management in GitLab

An issue has been discovered in GitLab EE affecting all versions starting from 13.12 before 16.0.8, all versions starting from 16.1 before 16.1.3, all versions starting from 16.2 before 16.2.2. It was possible for an attacker to run pipeline jobs as an arbitrary user via scheduled security scan...

8.2CVSS7.9AI score0.00878EPSS
Exploits1References5
Debian CVE
Debian CVE
added 2023/08/03 4:1 a.m.29 views

CVE-2023-3932

Removed by vendor...

8.2CVSS7.2AI score0.00878EPSS
Exploits1
Kitploit
Kitploit
added 2015/04/15 11:32 p.m.969 views

OWASP ZAP 2.4.0 - Penetration Testing Tool for Testing Web Applications

ZAP is an OWASP Flagship project, and is currently the most active open source web application security tool. For a quick introduction to the new release see this video: Some of the most significant changes include: ‘Attack’ Mode A new ‘attack’ mode has been added that means that applications tha...

7.2AI score
Exploits0
Kitploit
Kitploit
added 2013/07/11 5:18 a.m.31 views

[Netsparker v3.0.2.0 Community Edition] Web Application Security Scanner

Netsparker can crawl, attack and identify vulnerabilities in all custom web applications regardless of the platform and the technology they are built on, just like an actual attacker. It can identify web application vulnerabilities like SQL Injection, Cross-site Scripting XSS, Remote Code Executi...

8AI score
Exploits0
Rows per page
Query Builder