[Forgot Password]
Login  Register Subscribe

30480

 
 

423868

 
 

252271

 
 

909

 
 

196835

 
 

282

 
 
 
Paid content will be excluded from the download.

Filter
Matches : 10970 Download | Alert*

The host is installed with GitLab EE 12.2 before 14.10.5, 15.0 before 15.0.4 or 15.1 before 15.1.1 and is prone to an incorrect authorization vulnerability. A flaw is present in the application, which fails to properly handle issues in unspecified vectors. On successful exploitation, if a group enables the setting to restrict access to users belonging to specific domains, that allow-list may be by ...

The host is installed with GitLab CE/EE before 14.10.5, 15.0 before 15.0.4 or 15.1 before 15.1.1 and is prone to an improper access control vulnerability. A flaw is present in the application, which fails to properly handle issues in unspecified vectors. Successful exploitation could allows a previous maintainer of a project with a specific runner to access job and project meta data under certain ...

The host is installed with GitLab EE 14.5 before 14.10.5, 15.0 before 15.0.4 or 15.1 before 15.1.1 and is prone to a cross-site scripting vulnerability. A flaw is present in the application, which fails to properly handle issues in GitLab EE's external issue tracker. Successful exploitation could allows an attacker to perform cross-site scripting when a victim clicks on a maliciously crafted ZenTa ...

The host is installed with GitLab CE/EE 14.4 before 14.10.5, 15.0 before 15.0.4 or 15.1 before 15.1.1 and is prone to a stored cross-site scripting vulnerability. A flaw is present in the application, which fails to properly handle issues in unspecified vectors. Successful exploitation could allows an attacker to execute arbitrary JavaScript code in GitLab on a victim's behalf.

The host is installed with GitLab CE/EE 13.4 before 14.10.5, 15.0 before 15.0.4 or 15.1 before 15.1.1 and is prone to a multi-factor authentication security vulnerability. A flaw is present in the application, which fails to properly handle issues in unspecified vectors. On Successful exploitation, GitLab reveals if a user has enabled two-factor authentication on their account in the HTML source, ...

The host is installed with GitLab EE 12.0 before 14.10.5, 15.0 before 15.0.4 or 15.1 before 15.1.1 and is prone to an information exposure vulnerability. A flaw is present in the application, which fails to properly handle issues in unspecified vectors. Successful exploitation could allows an attacker with the appropriate access tokens to obtain CI variables in a group with using IP-based access r ...

The host is installed with GitLab CE/EE 12.4 before 14.10.5, 15.0 before 15.0.4 or 15.1 before 15.1.1 and is prone to an incorrect default permissions vulnerability. A flaw is present in the application, which fails to properly handle issues in unspecified vectors. On successful exploitation, GitLab was leaking Conan packages names due to incorrect permissions verification.

The host is installed with GitLab CE/EE 11.1 before 14.10.5, 15.0 before 15.0.4 or 15.1 before 15.1.1 and is prone to a URL redirection to untrusted site vulnerability. A flaw is present in the application, which fails to properly handle issues in unspecified vectors. Successful exploitation could allows an attacker to redirect users to an arbitrary location if they trust the URL.

The host is installed with GitLab CE/EE 8.13 before 14.10.5, 15.0 before 15.0.4 or 15.1 before 15.1.1 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to properly handle issues in unspecified vectors. On successful exploitation, under certain conditions, using the REST API an unprivileged user was able to change labels description.

The host is installed with GitLab CE/EE 12.5 before 14.10.5, 15.0 before 15.0.4 or 15.1 before 15.1.1 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly handle issues in unspecified vectors. Successful exploitation could allows disclosure of release titles if group milestones are associated with any project releases.


Pages:      Start    651    652    653    654    655    656    657    658    659    660    661    662    663    664    ..   1096

© SecPod Technologies