Gitlab — веб-платформа для управления проектами и репозиториями программного кода, работа которой основана на популярной системе контроля версий Git.

Релизный цикл, информация об уязвимостях

Продукт: Gitlab

Вендор: gitlab

График релизов

Недавние уязвимости Gitlab

Количество 5 336

CVE-2020-14155

больше 5 лет назад

libpcre in PCRE before 8.44 allows an integer overflow via a large number after a (?C substring.

CVSS3: 5.3

EPSS: Низкий

CVE-2020-14155

больше 5 лет назад

libpcre in PCRE before 8.44 allows an integer overflow via a large num ...

CVSS3: 5.3

EPSS: Низкий

CVE-2020-14155

больше 5 лет назад

libpcre in PCRE before 8.44 allows an integer overflow via a large number after a (?C substring.

CVSS3: 5.3

EPSS: Низкий

CVE-2020-14155

больше 5 лет назад

libpcre in PCRE before 8.44 allows an integer overflow via a large number after a (?C substring.

CVSS3: 5.3

EPSS: Низкий

CVE-2020-13271

больше 5 лет назад

A Stored Cross-Site Scripting vulnerability allowed the execution of arbitrary Javascript code in the blobs API in all previous GitLab CE/EE versions through 13.0.1

CVSS3: 6.1

EPSS: Низкий

CVE-2020-13271

больше 5 лет назад

A Stored Cross-Site Scripting vulnerability allowed the execution of a ...

CVSS3: 6.1

EPSS: Низкий

CVE-2020-13270

больше 5 лет назад

Missing permission check on fork relation creation in GitLab CE/EE 11.3 and later through 13.0.1 allows guest users to create a fork relation on restricted public projects via API

CVSS3: 7.5

EPSS: Низкий

CVE-2020-13270

больше 5 лет назад

Missing permission check on fork relation creation in GitLab CE/EE 11. ...

CVSS3: 7.5

EPSS: Низкий

CVE-2020-13269

больше 5 лет назад

A Reflected Cross-Site Scripting vulnerability allowed the execution of arbitrary Javascript code on the Static Site Editor in GitLab CE/EE 12.10 and later through 13.0.1

CVSS3: 6.1

EPSS: Низкий

CVE-2020-13269

больше 5 лет назад

A Reflected Cross-Site Scripting vulnerability allowed the execution o ...

CVSS3: 6.1

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано 1
CVE-2020-14155 libpcre in PCRE before 8.44 allows an integer overflow via a large number after a (?C substring.	CVSS3: 5.3	0% Низкий	больше 5 лет назад
CVE-2020-14155 libpcre in PCRE before 8.44 allows an integer overflow via a large num ...	CVSS3: 5.3	0% Низкий	больше 5 лет назад
CVE-2020-14155 libpcre in PCRE before 8.44 allows an integer overflow via a large number after a (?C substring.	CVSS3: 5.3	0% Низкий	больше 5 лет назад
CVE-2020-14155 libpcre in PCRE before 8.44 allows an integer overflow via a large number after a (?C substring.	CVSS3: 5.3	0% Низкий	больше 5 лет назад
CVE-2020-13271 A Stored Cross-Site Scripting vulnerability allowed the execution of arbitrary Javascript code in the blobs API in all previous GitLab CE/EE versions through 13.0.1	CVSS3: 6.1	0% Низкий	больше 5 лет назад
CVE-2020-13271 A Stored Cross-Site Scripting vulnerability allowed the execution of a ...	CVSS3: 6.1	0% Низкий	больше 5 лет назад
CVE-2020-13270 Missing permission check on fork relation creation in GitLab CE/EE 11.3 and later through 13.0.1 allows guest users to create a fork relation on restricted public projects via API	CVSS3: 7.5	0% Низкий	больше 5 лет назад
CVE-2020-13270 Missing permission check on fork relation creation in GitLab CE/EE 11. ...	CVSS3: 7.5	0% Низкий	больше 5 лет назад
CVE-2020-13269 A Reflected Cross-Site Scripting vulnerability allowed the execution of arbitrary Javascript code on the Static Site Editor in GitLab CE/EE 12.10 and later through 13.0.1	CVSS3: 6.1	0% Низкий	больше 5 лет назад
CVE-2020-13269 A Reflected Cross-Site Scripting vulnerability allowed the execution o ...	CVSS3: 6.1	0% Низкий	больше 5 лет назад

Уязвимостей на страницу