Lucene search
Veracode Vulnerability DatabaseVERACODE:44827HistoryDec 26, 2023 - 2:27 a.m.
Code Injection
2023-12-2602:27:02
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
4
gitlab
vulnerability
code injection
file validation
ui representation
Gitlab is vulnerable to Code Injection. The vulnerability is caused due to lack of validation of file names. An attacker can inject code which can alter the representation of the UI.
| CPE | Name | Operator | Version |
|---|---|---|---|
| gitlab:sid | eq | 13.4.7-2 | |
| gitlab:sid | eq | 13.3.9-1 | |
| gitlab:sid | eq | 13.4.7-2 | |
| gitlab:sid | eq | 13.3.9-1 |
Related
nessus
nessus
GitLab 16.3 < 16.4.4 / 16.5 < 16.5.4 / 16.6 < 16.6.2 (CVE-2023-5512)
2023-12-14 00:00:00
FreeBSD : Gitlab -- vulnerabilities (e2fb85ce-9a3c-11ee-af26-001b217b3468)
2023-12-14 00:00:00
prion
prion
Design/Logic Flaw
2023-12-15 16:15:00
cve
cve
CVE-2023-5512
2023-12-15 16:15:46
osv
osv
BIT-gitlab-2023-5512
2024-03-06 10:56:37
CVE-2023-5512
2023-12-15 16:15:46
debiancve
debiancve
CVE-2023-5512
2023-12-15 16:15:46
ubuntucve
ubuntucve
CVE-2023-5512
2023-12-15 00:00:00
cvelist
cvelist
freebsd
freebsd
Gitlab -- vulnerabilities
2023-12-13 00:00:00