Lucene search

Dast Api Scanner Security Vulnerabilities

cve

CVE-2022-3767

Missing validation in DAST analyzer affecting all versions from 1.11.0 prior to 3.0.32, allows custom request headers to be sent with every request, regardless of the host.

7.7CVSS

6.2AI Score

0.001EPSS

2023-03-09 11:15 PM

cve

CVE-2022-4206

A sensitive information leak issue has been discovered in all versions of DAST API scanner from 1.6.50 prior to 2.0.102, exposing the Authorization header in the vulnerability report

6.5CVSS

6.1AI Score

0.001EPSS

2023-02-01 03:15 AM

cve

CVE-2022-4317

An issue has been discovered in GitLab DAST analyzer affecting all versions starting from 1.47 before 3.0.51, which sends custom request headers in redirects.

6.1CVSS

6AI Score

0.001EPSS

2023-03-09 08:15 PM

cve

CVE-2023-0326

An issue has been discovered in GitLab DAST API scanner affecting all versions starting from 1.6.50 before 2.11.0, where Authorization headers was leaked in vulnerability report evidence.

5CVSS

4.4AI Score

0.001EPSS

2023-03-27 10:15 PM

173