Gitlab Security Vulnerabilities and Issues — Gitlab CVE List

Lucene search

JenkinsGitlab

2 matches found

CVE•added 2019/04/18 5:29 p.m.•56 views

CVE-2019-10300

A cross-site request forgery vulnerability in Jenkins GitLab Plugin 1.5.11 and earlier in the GitLabConnectionConfig#doTestConnection form validation method allowed attackers to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing ...

8CVSS7.5AI score0.00089EPSS

CVE•added 2019/04/18 5:29 p.m.•40 views

CVE-2019-10301

A missing permission check in Jenkins GitLab Plugin 1.5.11 and earlier in the GitLabConnectionConfig#doTestConnection form validation method allowed attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another metho...

8.8CVSS8.4AI score0.00067EPSS