Information Disclosure

gitlab is vulnerable to Information Disclosure. An attacker could exploit this vulnerability to obtain the reset password token and new user email token for a GitLab user. This could then be used to reset the user's password or create a new account in their name...

Information Disclosure

gitlab is vulnerable to Information Disclosure. The vulnerability exists due to the insertion of sensitive information into log file which allows an attacker with local file system access to obtain system root-level privileges...

Improper Authorization

gitlab is vulnerable to Improper Authorization. The vulnerability occurs due to a lack of access control allowing authenticated users to retrieve configurations of any external status checks...

Information Disclosure

gitlab is vulnerable to Information Disclosure. An attacker could exploit this vulnerability to obtain the names of project access tokens, which could then be used to access and modify GitLab projects...

Improper Authorization

gitlab is vulnerable to Improper Authorization. An attacker could exploit this vulnerability to add malicious comments to vulnerabilities, which could then be seen by other users. These malicious comments could contain misinformation or phishing links, which could be used to deceive users and...

Regular Expression Denial Of Service (ReDoS)

gitlab is vulnerable to Regular Expression Denial Of Service ReDoS. The vulnerability exists because the library causes excessive usage of resources when a maliciously crafted username is used when provisioning a new user...

Denial Of Service (DoS)

gitlab is vulnerable to Denial Of Service DoS. The vulnerability exists when stripping EXIF data from specific images, leading to high CPU usage and an application crash...

Code Injection

gitlab is vulnerable to Code Injection. The vulnerability exists due to improper access restrictions which allows an attacker to inject and execute arbitrary codes into the system...

Cross-site Scripting (XSS)

gitlab is vulnerable to Cross-site Scripting XSS. The vulnerability exists due to the improper validation in the ipynb files of the library, which allows an attacker to inject and execute malicious javascript...

Improper Access Control

gitlab is vulnerable to Improper Access Control. The vulnerability exists due to improper restrictions in settings which allows an attacker to gain view access and perform unaothorized actions...

Improper Access Control

gitlab is vulnerable to Improper Access Control. The vulnerability exists due to improper role base access restrictions which allows a Merge Request creator to resolve discussions and apply suggestions after a project owner has locked the Merge Request...

Information Disclosure

gitlab is vulnerable to Information Disclosure. The vulnerability exists because the an attacker can see the basic information on private groups that a public project has been shared with...

Incorrect Authorization

gitlab is vulnerable to Incorrect Authorization. An attacker with guest membership in a project can modify the severity of an incident...

Information Disclosure

gitlab is vulnerable to Information Disclosure. The vulnerability exists due to an improper access control flaw which allows an atacker to gain access to private email address of issues and merge requests assignee to Webhook data consumers...

Denial Of Service (DoS)

gitlab is vulnerable to Denial Of Service DoS. An attacker can cause an application crash by providing a maliciously crafted TIFF images...

HTML Injection

gitlab is vulnerable to HTML Injection. The vulnerability exists in the Swagger UI feature, which allows an attacker to inject and execute malicious HTML...

Information Disclosure

gitlab is vulnerable to Information Disclosure. The vulnerability exists in the SendEntry of the library, which allows an attacker to gain sensitive information through the URL of artifacts stored in object storage with a temporary availability via Rails logs...

Information Disclosure

gitlab is vulnerable to Information Disclosure. An admin of a group can see the SCIM token of that group by visiting a specific endpoint...

Improper Access Control

gitlab is vulnerable to Improper Access Control. The vulnerability allows a project export leak the external webhook token value which allows a attacker to access to the projects...

Improper Session Management

gitlab is vulnerable to Improper Session Management. The vulnerability allows an attacker with physical access to a user’s machine may brute force the user’s password via the change password function by stealing the session id from the physical compromise of the account and splitting the attack...

Authorization Bypass

gitlab is vulnerable to Authorization Bypass. The vulnerability exists when an admin uses the impersonate feature twice and stops impersonating, the admin may be logged in as the second user they impersonated, which may lead to repudiation issues...

Server Side Request Forgery (SSRF)

gitlab is vulnerable to Server Side Request Forgery SSRF. The vulnerability exists in Fogbugz importer which may be used by attackers to exploit Server Side Request Forgery attacks...

Improper Access Control

gitlab is vulnerable to Improper Access Control. The vulnerability allows an attacker with inherited access to a project from a parent group to still have access even after the subgroup is transferred...

Information Disclosure

gitlab is vulnerable to Information Disclosure. An attacker can set the pipeline schedules to be active in a project export so when an unsuspecting owner imports that project, pipelines are active by default on that project which may lead to information disclosure if the project is imported from ...

Denial Of Service (DoS)

gitlab is vulnerable to Denial of Service DoS. The vulnerability is due to allowing of parsing files without authorisation which allows an attacker to cause an application crash...

Information Disclosure

gitlab is vulnerable to Information Disclosure. A lower privileged user can import users from projects that they don't have a maintainer role on and disclose email addresses of those users...

Authentication Bypass

gitlab is vulnerable to Authentication Bypass. The vulnerability allows an attacker to bypass 2FA for LDAP users and access some specific pages with Basic Authentication...

Information Disclosure

gitlab is vulnerable to Information Disclosure. The vulnerability exists because the access tokens created as part of admin's impersonation of a user are not cleared at the end of impersonation which may lead to unnecessary sensitive info disclosure...

Information Disclosure

gitlab is vulnerable to Information Disclosure. The vulnerability exists due to improper permissions rules allowing an attacker to read confidential Epic references...

Cross-site Scripting (XSS)

gitlab is vulnerable to Cross-site Scripting XSS. The vulnerability exists in the Flavored Markdown in the library, which allows an attacker to inject and execute malicious javascript...

Authorization Bypass

gitlab is vulnerable to Authorization Bypass. The vulnerability allows a malicious user create an OAuth client application with arbitrary scope names which may allow the malicious user to trick unsuspecting users to authorize the malicious client application using the spoofed scope name and...

Information Disclosure

gitlab is vulnerable to Information Disclosure. The vulnerability an attacker to use a few endpoints to retrieve information about any GitLab user...

Improper Authentication

gitlab is vulnerable to Improper Authentication. The vulnerability exists due to missing authentication which allows an attacker with access to a victim's session to disable two-factor authentication...

Information Disclosure

gitlab is vulnerable to Information Disclosure. The vulnerability exists due to lack of view permissions of trigger tokens which allows an attacker to expose trigger tokens configured on that project...

Cross-Site Scripting (XSS)

gitlab is vulnerable to stored Reflected Cross-Site Scripting XSS. The vulnerability allows an attacker to execute arbitrary javascript code...

Denial Of Service (DoS)

gitlab is vulnerable to Denial Of Service DoS. An attacker can cause uncontrolled resource consumption with a maliciously crafted file, leading to an application crash...

Information Disclosure

gitlab is vulnerable to Information Disclosure. The vulnerability exists due to lack of view permissions on members which allows an attacker to gain access to the members of private groups...

Improper Access Control

gitlab is vulnerable to Improper Access Control. The vulnerability exists because the requirement to enforce 2FA is not honored when using git commands allowing an attacker to perform unauthorized actions...

Information Disclosure

gitlab is vulnerable to Information Disclosure. The vulnerability exists due to improper view permissions which allows an attacker to see pending invitations of any public group or public project by visiting an API endpoint...

Content Spoofing

gitlab is vulnerable to Content Spoofing attacks. The vulnerability allows an attacker to trick users into visiting a malicious website by spoofing the content in an error response...

Improper Access Control

gitlab is vulnerable to Improper Access Control. An instance that has the setting to disable Repo by URL import enabled is bypassed by an attacker making a crafted API call...

Improper Access Control

gitlab is vulnerable to Improper Access Control. The vulnerability exists because of not managing the sessions properly which allows an attacker with expired password to still access GitLab through git and API through access tokens acquired before password expiration...

Authorization Bypass

gitlab is vulnerable to Authorization Bypass. The vulnerability exists because of an instance that has the setting to disable Bitbucket Server import enabled allowing an attacker to bypass by making a crafted API call...

Permission Bypass

GitLab CE/EE is vulnerable to Permission Bypass. The vulnerability is due to insecure authorization, a low level authenticated user can create a project with unlimited size by setting "repositorysizelimit" : 0 in the project import YAML file...

Server Side Request Forgery (SSRF)

GitLab CE/EE is vulnerable to Server Side Request Forgery SSRF attacks. The vulnerability is due to DNS rebinding in the Gitea importer, which can be exploited by an attacker to trigger SSRF...

Directory Traversal

gitlab is vulnerable to a directory traversal. An attacker is able to exploit this vulnerability to access arbitrary files on the server by specifying a malicious path in the project deletion request...

Off By One Error

gpac is vulnerable Off by One errors. The vulnerability is due to the gftextgetutf8line function in loadtext.c, which incorrectly checks for the end of a line when reading a text file, resulting in an application crash...

Authorization Bypass

gitlab is vulnerable to Authorization Bypass. An attacker can exploit this vulnerability to obtain the email address of the pipeline creator by injecting malicious code into the email address field...

Cross-Site Scripting (XSS)

gitlab is vulnerable to Cross-Site Scripting XSS attacks. An attacker could gain access to an integration's access token, which could then be used to impersonate the integration and perform unauthorized actions...

Information Disclosure

haproxy is vulnerable to an Information Disclosure. The vulnerability occurs because GitLab does not properly sanitize the FCGIBEGINREQUEST record. An attacker can exploit this vulnerability by sending a malicious request to GitLab that contains a crafted FCGIBEGINREQUEST record. This will cause...