CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2025-26495

Malicious code in bioql PyPI...

2.7CVSS6.4AI score0.00048EPSS

NVD•added 2025/09/03 10:15 a.m.•2 views

CVE-2025-9821

SummaryUsers with webhook permissions can conduct SSRF via webhooks. If they have permission to view the webhook logs, the partial request response is also disclosed DetailsWhen sending webhooks, the destination is not validated, causing SSRF. ImpactBypass of firewalls to interact with internal...

2.7CVSS0.00048EPSS

Tenable Nessus•added 2025/08/18 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2022-3018

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An information disclosure vulnerability in GitLab CE/EE affecting all versions starting from 9.3 before 15.2.5, all versions starting from 15.3 before 15.3.4, a...

6.8CVSS6.3AI score0.00167EPSS

RedhatCVE•added 2025/05/22 10:59 p.m.•6 views

CVE-2022-3293

Email addresses were leaked in WebHook logs in GitLab EE affecting all versions from 9.3 prior to 15.2.5, 15.3 prior to 15.3.4, and 15.4 prior to 15.4.1...

4.3CVSS6.5AI score0.00071EPSS

Positive Technologies•added 2024/04/17 12:0 a.m.•3 views

PT-2024-22688

Name of the Vulnerable Software and Affected Versions Umbraco versions 13.0.0 through 13.1.0 Description The issue concerns the availability of failing webhooks logs when the solution is not in debug mode, potentially containing critical information. Recommendations For Umbraco versions 13.0.0...

5.3CVSS5.8AI score0.00209EPSS

Exploits0References10

CNNVD•added 2024/04/17 12:0 a.m.•1 views

Umbraco 安全漏洞

Umbraco is an open source content management system CMS written in C by the Danish company Umbraco. A security vulnerability exists in Umbraco version 13.0.0 and earlier, which originates from a vulnerability that allows an attacker to view webhook logs while in debug mode, which could lead to...

5.3CVSS5.1AI score0.00209EPSS

OSV•added 2024/03/06 11:14 a.m.•20 views

BIT-GITLAB-2022-3018

An information disclosure vulnerability in GitLab CE/EE affecting all versions starting from 9.3 before 15.2.5, all versions starting from 15.3 before 15.3.4, all versions starting from 15.4 before 15.4.1 allows a project maintainer to access the DataDog integration API key from webhook logs...

6.8CVSS5.2AI score0.00167EPSS

OSV•added 2024/03/06 11:14 a.m.•21 views

BIT-GITLAB-2022-3293

Email addresses were leaked in WebHook logs in GitLab EE affecting all versions from 9.3 prior to 15.2.5, 15.3 prior to 15.3.4, and 15.4 prior to 15.4.1...

4.3CVSS4.6AI score0.00071EPSS

Veracode•added 2023/08/06 4:19 a.m.•33 views

Information Disclosure

gitlab is vulnerable to Information Disclosure. The vulnerability allows a project maintainer to access the DataDog integration API key from webhook logs resulting in disclosure of sensitive information...

6.8CVSS6.6AI score0.00167EPSS

Exploits0References3Affected Software1

OSV•added 2022/10/28 3:15 p.m.•1 views

UBUNTU-CVE-2022-3018

6.8CVSS7.3AI score0.00167EPSS

Vulnrichment•added 2022/10/28 12:0 a.m.•5 views

CVE-2022-3018

6.8CVSS6AI score0.00167EPSS

Cvelist•added 2022/10/28 12:0 a.m.•16 views

CVE-2022-3018

6.8CVSS6.4AI score0.00167EPSS

Positive Technologies•added 2022/10/28 12:0 a.m.•3 views

PT-2022-20020 · Gitlab · Gitlab Ce/Ee +1

Name of the Vulnerable Software and Affected Versions: GitLab CE/EE versions 9.3 through 15.2.4 GitLab CE/EE versions 15.3 through 15.3.3 GitLab CE/EE versions 15.4 through 15.4.0 Description: An information disclosure issue affects GitLab CE/EE, allowing a project maintainer to access the DataDo...

6.8CVSS5.5AI score0.00167EPSS

Exploits0References10

CNNVD•added 2022/10/28 12:0 a.m.•1 views

GitLab 日志信息泄露漏洞

GitLab is an open source, end-to-end software development platform from GitLab, Inc. with built-in version control, issue tracking, code review, CI/CD Continuous Integration and Continuous Delivery and other features. A security vulnerability exists in GitLab CE/EE, which stems from its ability t...

6.8CVSS6.6AI score0.00167EPSS

OSV•added 2022/10/28 12:0 a.m.•17 views

CVE-2022-3018

6.8CVSS4.5AI score0.00167EPSS

Exploits0References4

Prion•added 2022/10/17 4:15 p.m.•14 views

Code injection

Email addresses were leaked in WebHook logs in GitLab EE affecting all versions from 9.3 prior to 15.2.5, 15.3 prior to 15.3.4, and 15.4 prior to 15.4.1...

4CVSS4.7AI score0.00071EPSS

Exploits0References2Affected Software1

UbuntuCve•added 2022/10/17 4:15 p.m.•28 views

CVE-2022-3293

Email addresses were leaked in WebHook logs in GitLab EE affecting all versions from 9.3 prior to 15.2.5, 15.3 prior to 15.3.4, and 15.4 prior to 15.4.1...

4.3CVSS5.9AI score0.00071EPSS

OSV•added 2022/10/17 4:15 p.m.•1 views

UBUNTU-CVE-2022-3293

Email addresses were leaked in WebHook logs in GitLab EE affecting all versions from 9.3 prior to 15.2.5, 15.3 prior to 15.3.4, and 15.4 prior to 15.4.1...

4.3CVSS5.8AI score0.00071EPSS

CNNVD•added 2022/10/17 12:0 a.m.•2 views

GitLab 日志信息泄露漏洞

GitLab is an open source, end-to-end software development platform from GitLab, Inc. with built-in version control, issue tracking, code review, CI/CD Continuous Integration and Continuous Delivery, and other features. A security vulnerability exists in GitLab CE/EE versions 9.3 through 15.2.5,...

4.3CVSS5.1AI score0.00071EPSS