Gitlab ≫ Gitlab

1257 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.

4.3

CVE-2023-0508

EPSS 3.74%
Veröffentlicht 07.06.2023 17:15:09
Zuletzt bearbeitet 07.01.2025 17:15:11

An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.4 before 15.10.8, all versions starting from 15.11 before 15.11.7, all versions starting from 16.0 before 16.0.2. Open redirection was possible via HTTP response spl...

4.3

CVE-2023-1825

EPSS 0.29%
Veröffentlicht 07.06.2023 17:15:09
Zuletzt bearbeitet 20.03.2025 17:00:56

An issue has been discovered in GitLab EE affecting all versions starting from 15.7 before 15.10.8, all versions starting from 15.11 before 15.11.7, all versions starting from 16.0 before 16.0.2. It was possible to disclose issue notes to an unauthor...

4.3

CVE-2023-2001

EPSS 0.42%
Veröffentlicht 07.06.2023 17:15:09
Zuletzt bearbeitet 07.01.2025 17:15:13

An issue has been discovered in GitLab CE/EE affecting all versions before 15.10.8, all versions starting from 15.11 before 15.11.7, all versions starting from 16.0 before 16.0.2. An attacker was able to spoof protected tags, which could potentially ...

5.4

CVE-2023-2442

EPSS 83.69%
Veröffentlicht 07.06.2023 16:15:09
Zuletzt bearbeitet 07.01.2025 17:15:14

An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.11 before 15.11.7, all versions starting from 16.0 before 16.0.2. A specially crafted merge request could lead to a stored XSS on the client side which allows attack...

6.5

CVE-2023-1621

EPSS 1.11%
Veröffentlicht 06.06.2023 20:15:10
Zuletzt bearbeitet 21.11.2024 07:39:33

An issue has been discovered in GitLab EE affecting all versions starting from 12.0 before 15.10.5, all versions starting from 15.11 before 15.11.1. A malicious group member may continue to commit to projects even from a restricted IP address.

7.5

CVE-2023-2132

EPSS 1.35%
Veröffentlicht 06.06.2023 17:15:14
Zuletzt bearbeitet 07.01.2025 22:15:29

An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.4 before 15.10.8, all versions starting from 15.11 before 15.11.7, all versions starting from 16.0 before 16.0.2. A DollarMathPostFilter Regular Expression Denial of...

4.3

CVE-2023-0921

EPSS 20.03%
Veröffentlicht 06.06.2023 17:15:12
Zuletzt bearbeitet 05.05.2025 14:12:29

A lack of length validation in GitLab CE/EE affecting all versions from 8.3 before 15.10.8, 15.11 before 15.11.7, and 16.0 before 16.0.2 allows an authenticated attacker to create a large Issue description via GraphQL which, when repeatedly requested...

7.5

CVE-2023-2825

EPSS 93.02%
Veröffentlicht 26.05.2023 21:15:16
Zuletzt bearbeitet 15.01.2025 16:15:26

An issue has been discovered in GitLab CE/EE affecting only version 16.0.0. An unauthenticated malicious user can use a path traversal vulnerability to read arbitrary files on the server when an attachment exists in a public project nested within at ...

6.5

CVE-2023-2181

EPSS 0.35%
Veröffentlicht 12.05.2023 21:15:09
Zuletzt bearbeitet 21.11.2024 07:58:05

An issue has been discovered in GitLab affecting all versions before 15.9.8, 15.10.0 before 15.10.7, and 15.11.0 before 15.11.3. A malicious developer could use a git feature called refs/replace to smuggle content into a merge request which would not...

6.5

CVE-2023-2478

EPSS 0.36%
Veröffentlicht 08.05.2023 21:15:10
Zuletzt bearbeitet 29.01.2025 18:15:44

An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.4 before 15.9.7, all versions starting from 15.10 before 15.10.6, all versions starting from 15.11 before 15.11.2. Under certain conditions, a malicious unauthorized...

<1...38394041424344...126>