[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

249622

 
 

909

 
 

195521

 
 

282

 
 
 
Paid content will be excluded from the download.

Filter
Matches : 10937 Download | Alert*

The host is installed with GitLab CE/EE 1.0 before 15.6.7, 15.7 before 15.7.6 or 15.8 before 15.8.1 and is prone to a cross site request forgery vulnerability. A flaw is present in the application, which fails to properly handle unspecified vectors. Successful exploitation allows attackers to take over a project if an owner or maintainer uploads a file to a malicious project.

The host is installed with GitLab CE/EE 1.0 before 15.6.7, 15.7 before 15.7.6 or 15.8 before 15.8.1 and is prone to a cross site request forgery vulnerability. A flaw is present in the application, which fails to properly handle unspecified vectors. Successful exploitation allows attackers to take over a project if an owner or maintainer uploads a file to a malicious project.

The host is installed with GitLab CE/EE 14.3 before 15.6.7, 15.7 before 15.7.6 or 15.8 before 15.8.1 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly handle unspecified vectors. Successful exploitation allows attackers to upload a crafted CI job artifact zip file in a project that uses dynamic child pipelines and make a sidekiq job al ...

The host is installed with GitLab CE/EE 14.3 before 15.6.7, 15.7 before 15.7.6 or 15.8 before 15.8.1 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly handle unspecified vectors. Successful exploitation allows attackers to upload a crafted CI job artifact zip file in a project that uses dynamic child pipelines and make a sidekiq job al ...

The host is installed with GitLab CE/EE 15.3 before 15.7.8, 15.8 before 15.8.4 or 15.9 before 15.9.2 and is prone to a cross-site scripting vulnerability. A flaw is present in the application, which fails to properly handle an issue in the title field of work items. Successful exploitation allows attackers to perform arbitrary actions on behalf of victims at client side.

The host is installed with GitLab CE/EE 15.3 before 15.7.8, 15.8 before 15.8.4 or 15.9 before 15.9.2 and is prone to a cross-site scripting vulnerability. A flaw is present in the application, which fails to properly handle an issue in the title field of work items. Successful exploitation allows attackers to perform arbitrary actions on behalf of victims at client side.

The host is installed with GitLab CE/EE 15.2 before 15.9.6, 15.10 before 15.10.5, 15.11 before 15.11.1 and is prone to an unspecified vulnerability. A flaw is present in the application, which fails to properly handle unspecified vectors. Successful exploitation allows an attacker to map a private email of a GitLab user to their GitLab account on an instance.

The host is installed with GitLab CE/EE 15.2 before 15.9.6, 15.10 before 15.10.5, 15.11 before 15.11.1 and is prone to an unspecified vulnerability. A flaw is present in the application, which fails to properly handle unspecified vectors. Successful exploitation allows an attacker to map a private email of a GitLab user to their GitLab account on an instance.

The host is installed with GitLab CE/EE 14.7.x prior to 14.7.7, 14.8.x prior to 14.8.5, or 14.9.x prior to 14.9.2 and is prone to an account take over vulnerability. A flaw is present in the application, due to a hardcoded password set for accounts registered using an OmniAuth provider. Successful exploitation allows attackers to potentially take over accounts.

The host is installed with GitLab CE/EE 14.7.x prior to 14.7.7, 14.8.x prior to 14.8.5, or 14.9.x prior to 14.9.2 and is prone to an account take over vulnerability. A flaw is present in the application, due to a hardcoded password set for accounts registered using an OmniAuth provider. Successful exploitation allows attackers to potentially take over accounts.


Pages:      Start    646    647    648    649    650    651    652    653    654    655    656    657    658    659    ..   1093

© SecPod Technologies