Gitlab — веб-платформа для управления проектами и репозиториями программного кода, работа которой основана на популярной системе контроля версий Git.
Релизный цикл, информация об уязвимостях
График релизов
Количество 5 499
CVE-2026-1732
GitLab has remediated an issue in GitLab CE/EE affecting all versions ...
CVE-2026-1732
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 12.6 before 18.7.6, 18.8 before 18.8.6, and 18.9 before 18.9.2 that could have allowed an authenticated user to disclose confidential issue titles due to improper filtering under certain circumstances.
CVE-2026-1663
GitLab has remediated an issue in GitLab CE/EE affecting all versions ...
CVE-2026-1663
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 14.4 before 18.7.6, 18.8 before 18.8.6, and 18.9 before 18.9.2 that could have allowed an authenticated user with group import permissions to create labels in private projects due to improper authorization validation in the group import process under certain circumstances.
CVE-2026-1230
GitLab has remediated an issue in GitLab CE/EE affecting all versions ...
CVE-2026-1230
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 1.0 before 18.7.6, 18.8 before 18.8.6, and 18.9 before 18.9.2 that could have allowed an authenticated user to cause repository downloads to contain different code than displayed in the web interface due to incorrect validation of branch references under certain circumstances.
CVE-2026-1090
GitLab has remediated an issue in GitLab CE/EE affecting all versions ...
CVE-2026-1090
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 10.6 before 18.7.6, 18.8 before 18.8.6, and 18.9 before 18.9.2 that could have allowed an authenticated user, when the `markdown_placeholders` feature flag was enabled, to inject JavaScript in a browser due to improper sanitization of placeholder content in markdown processing.
CVE-2026-1069
GitLab has remediated an issue in GitLab CE/EE affecting all versions ...
CVE-2026-1069
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.9 before 18.9.2 that could have allowed an unauthenticated user to cause a denial of service by sending specially crafted GraphQL requests due to uncontrolled recursion under certain circumstances.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано 1 | |
|---|---|---|---|---|
| CVE-2026-1732 GitLab has remediated an issue in GitLab CE/EE affecting all versions ... | CVSS3: 4.3 | 0% Низкий | 14 дней назад |
 | CVE-2026-1732 GitLab has remediated an issue in GitLab CE/EE affecting all versions from 12.6 before 18.7.6, 18.8 before 18.8.6, and 18.9 before 18.9.2 that could have allowed an authenticated user to disclose confidential issue titles due to improper filtering under certain circumstances. | CVSS3: 4.3 | 0% Низкий | 14 дней назад |
| CVE-2026-1663 GitLab has remediated an issue in GitLab CE/EE affecting all versions ... | CVSS3: 4.3 | 0% Низкий | 14 дней назад |
| CVE-2026-1663 GitLab has remediated an issue in GitLab CE/EE affecting all versions from 14.4 before 18.7.6, 18.8 before 18.8.6, and 18.9 before 18.9.2 that could have allowed an authenticated user with group import permissions to create labels in private projects due to improper authorization validation in the group import process under certain circumstances. | CVSS3: 4.3 | 0% Низкий | 14 дней назад |
| CVE-2026-1230 GitLab has remediated an issue in GitLab CE/EE affecting all versions ... | CVSS3: 4.1 | 0% Низкий | 14 дней назад |
| CVE-2026-1230 GitLab has remediated an issue in GitLab CE/EE affecting all versions from 1.0 before 18.7.6, 18.8 before 18.8.6, and 18.9 before 18.9.2 that could have allowed an authenticated user to cause repository downloads to contain different code than displayed in the web interface due to incorrect validation of branch references under certain circumstances. | CVSS3: 4.1 | 0% Низкий | 14 дней назад |
| CVE-2026-1090 GitLab has remediated an issue in GitLab CE/EE affecting all versions ... | CVSS3: 8.7 | 0% Низкий | 14 дней назад |
| CVE-2026-1090 GitLab has remediated an issue in GitLab CE/EE affecting all versions from 10.6 before 18.7.6, 18.8 before 18.8.6, and 18.9 before 18.9.2 that could have allowed an authenticated user, when the `markdown_placeholders` feature flag was enabled, to inject JavaScript in a browser due to improper sanitization of placeholder content in markdown processing. | CVSS3: 8.7 | 0% Низкий | 14 дней назад |
| CVE-2026-1069 GitLab has remediated an issue in GitLab CE/EE affecting all versions ... | CVSS3: 7.5 | 0% Низкий | 14 дней назад |
| CVE-2026-1069 GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.9 before 18.9.2 that could have allowed an unauthenticated user to cause a denial of service by sending specially crafted GraphQL requests due to uncontrolled recursion under certain circumstances. | CVSS3: 7.5 | 0% Низкий | 14 дней назад |
Уязвимостей на страницу