Gitlab ≫ GitLab

1271 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.

7.5

CVE-2023-0632

EPSS 0.27%
Veröffentlicht 02.08.2023 00:15:16
Zuletzt bearbeitet 21.11.2024 07:37:31

An issue has been discovered in GitLab affecting all versions starting from 15.2 before 16.0.8, all versions starting from 16.1 before 16.1.3, all versions starting from 16.2 before 16.2.2. A Regular Expression Denial of Service was possible by using...

4.3

CVE-2023-1210

EPSS 0.11%
Veröffentlicht 02.08.2023 00:15:16
Zuletzt bearbeitet 21.11.2024 07:38:40

An issue has been discovered in GitLab affecting all versions starting from 12.9 before 16.0.8, all versions starting from 16.1 before 16.1.3, all versions starting from 16.2 before 16.2.2. It was possible to leak a user's email via an error message ...

5.4

CVE-2023-2164

EPSS 52.17%
Veröffentlicht 02.08.2023 00:15:16
Zuletzt bearbeitet 21.11.2024 07:58:03

An issue has been discovered in GitLab affecting all versions starting from 15.9 before 16.0.8, all versions starting from 16.1 before 16.1.3, all versions starting from 16.2 before 16.2.2. It was possible for an attacker to trigger a stored XSS vuln...

4.3

CVE-2023-1401

Exploit

EPSS 0.1%
Veröffentlicht 26.07.2023 07:15:09
Zuletzt bearbeitet 05.05.2025 14:14:52

An issue has been discovered in GitLab DAST scanner affecting all versions starting from 3.0.29 before 4.0.5, in which the DAST scanner leak cross site cookies on redirect during authorization.

5.3

CVE-2023-3102

EPSS 0.37%
Veröffentlicht 21.07.2023 16:15:10
Zuletzt bearbeitet 21.11.2024 08:16:27

A sensitive information leak issue has been discovered in GitLab EE affecting all versions starting from 16.0 before 16.0.6, all versions starting from 16.1 before 16.1.1, which allows access to titles of private issue and MR.

6.5

CVE-2023-3484

EPSS 0.11%
Veröffentlicht 21.07.2023 14:15:10
Zuletzt bearbeitet 21.11.2024 08:17:22

An issue has been discovered in GitLab EE affecting all versions starting from 12.8 before 15.11.11, all versions starting from 16.0 before 16.0.7, all versions starting from 16.1 before 16.1.2. An attacker could change the name or path of a public t...

5.3

CVE-2023-3362

EPSS 0.56%
Veröffentlicht 13.07.2023 03:15:10
Zuletzt bearbeitet 20.03.2025 17:00:14

An information disclosure issue in GitLab CE/EE affecting all versions from 16.0 prior to 16.0.6, and version 16.1.0 allows unauthenticated actors to access the import error information if a project was imported from GitHub.

3.8

CVE-2023-3363

EPSS 0.02%
Veröffentlicht 13.07.2023 03:15:10
Zuletzt bearbeitet 21.11.2024 08:17:06

An information disclosure issue in Gitlab CE/EE affecting all versions from 13.6 prior to 15.11.10, all versions from 16.0 prior to 16.0.6, all versions from 16.1 prior to 16.1.1, resulted in the Sidekiq log including webhook tokens when the log form...

7.5

CVE-2023-3424

EPSS 0.6%
Veröffentlicht 13.07.2023 03:15:10
Zuletzt bearbeitet 21.11.2024 08:17:14

An issue has been discovered in GitLab CE/EE affecting all versions starting from 10.3 before 15.11.10, all versions starting from 16.0 before 16.0.6, all versions starting from 16.1 before 16.1.1. A Regular Expression Denial of Service was possible ...

6.5

CVE-2023-3444

EPSS 0.24%
Veröffentlicht 13.07.2023 03:15:10
Zuletzt bearbeitet 05.05.2025 14:14:17

An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.3 before 15.11.10, all versions starting from 16.0 before 16.0.6, all versions starting from 16.1 before 16.1.1, which allows an attacker to merge arbitrary code int...

<1...37383940414243...128>