Lucene search
K

17 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-5611

Malware in sbrugna...

6.5CVSS6.4AI score0.01345EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-24765

Malicious code in bioql PyPI...

6.1CVSS5.7AI score0.01116EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/22 10:1 p.m.6 views

CVE-2022-1460

An issue has been discovered in GitLab affecting all versions starting from 9.2 before 14.8.6, all versions starting from 14.9 before 14.9.4, all versions starting from 14.10 before 14.10.1. GitLab was not performing correct authorizations on scheduled pipelines allowing a malicious user to run a...

6.1CVSS6.3AI score0.01116EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:42 p.m.9 views

CVE-2020-13351

Insufficient permission checks in scheduled pipeline API in GitLab CE/EE 13.0+ allows an attacker to read variable names and values for scheduled pipelines on projects visible to the attacker. Affected versions are =13.0, =13.4.0, =13.5.0, 13.5.2...

6.5CVSS6.3AI score0.01345EPSS
Exploits0
OSV
OSV
added 2024/03/06 11:21 a.m.24 views

BIT-GITLAB-2020-13351

Insufficient permission checks in scheduled pipeline API in GitLab CE/EE 13.0+ allows an attacker to read variable names and values for scheduled pipelines on projects visible to the attacker. Affected versions are =13.0, =13.4.0, =13.5.0, 13.5.2...

6.5CVSS6.3AI score0.01345EPSS
Exploits0References4
OSV
OSV
added 2024/03/06 11:15 a.m.27 views

BIT-GITLAB-2022-1460

An issue has been discovered in GitLab affecting all versions starting from 9.2 before 14.8.6, all versions starting from 14.9 before 14.9.4, all versions starting from 14.10 before 14.10.1. GitLab was not performing correct authorizations on scheduled pipelines allowing a malicious user to run a...

6.1CVSS5.2AI score0.01116EPSS
Exploits0References4
Veracode
Veracode
added 2023/07/23 8:2 a.m.15 views

Authorization Bypass

gitlab is vulnerable to Authorization Bypasses. The library does not perform correct authorizations on scheduled pipelines, which allows a malicious user to run a pipeline in the context of another user resulting in unauthorized access...

6.1CVSS6.6AI score0.01116EPSS
Exploits0References4Affected Software1
Tenable Nessus
Tenable Nessus
added 2022/05/18 12:0 a.m.31 views

GitLab 9.2 < 14.8.6 / 14.9 < 14.9.4 / 14.10 < 14.10.1 (CVE-2022-1460)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab affecting all versions starting from 9.2 before 14.8.6, all versions starting from 14.9 before 14.9.4, all versions starting from 14.10 before 14.10.1. GitLab wa...

6.1CVSS5.5AI score0.01116EPSS
Exploits0References4
NVD
NVD
added 2022/05/11 3:15 p.m.23 views

CVE-2022-1460

An issue has been discovered in GitLab affecting all versions starting from 9.2 before 14.8.6, all versions starting from 14.9 before 14.9.4, all versions starting from 14.10 before 14.10.1. GitLab was not performing correct authorizations on scheduled pipelines allowing a malicious user to run a...

6.1CVSS0.01116EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2022/05/11 3:15 p.m.8 views

CVE-2022-1460

An issue has been discovered in GitLab affecting all versions starting from 9.2 before 14.8.6, all versions starting from 14.9 before 14.9.4, all versions starting from 14.10 before 14.10.1. GitLab was not performing correct authorizations on scheduled pipelines allowing a malicious user to run a...

6.1CVSS5.7AI score0.01116EPSS
Exploits0References4Affected Software1
UbuntuCve
UbuntuCve
added 2022/05/11 3:15 p.m.27 views

CVE-2022-1460

An issue has been discovered in GitLab affecting all versions starting from 9.2 before 14.8.6, all versions starting from 14.9 before 14.9.4, all versions starting from 14.10 before 14.10.1. GitLab was not performing correct authorizations on scheduled pipelines allowing a malicious user to run a...

6.1CVSS5.9AI score0.01116EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2022/05/11 2:45 p.m.23 views

CVE-2022-1460

Removed by vendor...

6.1CVSS6.1AI score0.01116EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2022/05/11 12:0 a.m.3 views

PT-2022-13904 · Gitlab · Gitlab

Name of the Vulnerable Software and Affected Versions: GitLab versions 9.2 through 14.8.5 GitLab versions 14.9 through 14.9.3 GitLab versions 14.10 through 14.10.0 Description: An issue has been discovered in GitLab where it was not performing correct authorizations on scheduled pipelines. This...

6.1CVSS5.1AI score0.01116EPSS
Exploits0References8
NVD
NVD
added 2020/11/17 6:15 p.m.18 views

CVE-2020-13351

Insufficient permission checks in scheduled pipeline API in GitLab CE/EE 13.0+ allows an attacker to read variable names and values for scheduled pipelines on projects visible to the attacker. Affected versions are =13.0, =13.4.0, =13.5.0, 13.5.2...

6.5CVSS6.1AI score0.01345EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2020/11/17 6:15 p.m.26 views

CVE-2020-13351

Insufficient permission checks in scheduled pipeline API in GitLab CE/EE 13.0+ allows an attacker to read variable names and values for scheduled pipelines on projects visible to the attacker. Affected versions are =13.0, =13.4.0, =13.5.0, 13.5.2...

6.5CVSS6.6AI score0.01345EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2020/11/17 12:0 a.m.6 views

PT-2020-13492 · Gitlab · Gitlab Ce/Ee +1

Name of the Vulnerable Software and Affected Versions: GitLab CE/EE versions 13.0 through 13.3.9 GitLab CE/EE versions 13.4.0 through 13.4.5 GitLab CE/EE versions 13.5.0 through 13.5.2 Description: Insufficient permission checks in the scheduled pipeline API allow an attacker to read variable nam...

6.5CVSS6.2AI score0.01345EPSS
Exploits0References9
CNVD
CNVD
added 2020/11/05 12:0 a.m.4 views

GitLab code issue vulnerability (CNVD-2020-70853)

GitLab is a Ruby on Rails-developed, self-hosted, Git version control system project repository application from the American company GitLab. The program can be used to access a project's file contents, commit history, bug lists, and more. A code issue vulnerability exists in GitLab CE/EE version...

6.5CVSS7AI score0.01345EPSS
Exploits0References1
Rows per page
Query Builder