This module queries the GitLab GraphQL API without authentication to acquire the list of GitLab users (CVE-2021-4191). The module works on all GitLab versions from 13.0 up to 14.8.2, 14.7.4, and 14.6. ...
Continue Reading
May 30, 2022
 Every year, our research team at Rapid7 analyz ...
Continue Reading
May 30, 2022
An issue has been discovered in GitLab CE/EE affecting versions 13.0 to 14.6.5, 14.7 to 14.7.4, and 14.8 to 14.8.2. Private GitLab instances with restricted sign-ups may be vulnerable to user enumerat ...
Continue Reading
May 30, 2022
## CVE-2022-21999 - SpoolFool  Our very own [Shelby Pace]() has added a new module for the [CVE-202 ...
Continue Reading
May 30, 2022
According to its self-reported version, the instance of GitLab running on the remote web server is 13.x prior to 14.6.5, 14.7.x prior to 14.7.4, or 14.8.x prior to 14.8.2. It is, therefore, affected b ...
Continue Reading
May 30, 2022
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 2823048d-9f8f-11ec-8c9c-001b217b3468 advisor ...
Continue Reading
May 30, 2022
According to its self-reported version, the instance of GitLab running on the remote web server is 13.2 prior to 14.4.5, 14.5.0 prior to 14.5.3, or 14.6.0 prior to 14.6.2. It is, therefore, possible t ...
Continue Reading
May 30, 2022
 On April 9, 2022, ManageEngine fixed [CV ...
Continue Reading
May 30, 2022
Back to Main
