BIT-gitlab-2020-13333

A potential DOS vulnerability was discovered in GitLab versions 13.1, 13.2 and 13.3. The api to update an asset as a link from a release had a regex check which caused exponential number of backtracks ...

Continue Reading

February 01, 2024

BIT-gitlab-2020-13297

A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. When 2 factor authentication was enabled for groups, a malicious user could bypass that restriction by sending a sp ...

Continue Reading

February 01, 2024

BIT-gitlab-2020-13328

An issue has been discovered in GitLab affecting versions prior to 13.1.2, 13.0.8 and 12.10.13. GitLab was vulnerable to a stored XSS by using the PyPi files...Read More ...

Continue Reading

February 01, 2024

BIT-gitlab-2020-13270

Missing permission check on fork relation creation in GitLab CE/EE 11.3 and later through 13.0.1 allows guest users to create a fork relation on restricted public projects via...Read More ...

Continue Reading

February 01, 2024

BIT-gitlab-2020-13328

An issue has been discovered in GitLab affecting versions prior to 13.1.2, 13.0.8 and 12.10.13. GitLab was vulnerable to a stored XSS by using the PyPi files...Read More ...

Continue Reading

February 01, 2024

BIT-gitlab-2020-13284

A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. API Authorization Using Outdated CI Job...Read More ...

Continue Reading

February 01, 2024

BIT-gitlab-2020-12275

GitLab 12.6 through 12.9 is vulnerable to a privilege escalation that allows an external user to create a personal snippet through the API.Read More ...

Continue Reading

February 01, 2024

BIT-gitlab-2020-13324

A vulnerability was discovered in GitLab versions prior to 13.1. Under certain conditions the private activity of a user could be exposed via the...Read More ...

Continue Reading

February 01, 2024

1 8,560 8,561 8,562 8,563 8,564 9,321

Back to Main
Subscribe for the latest news: