Gitlab — веб-платформа для управления проектами и репозиториями программного кода, работа которой основана на популярной системе контроля версий Git.

Релизный цикл, информация об уязвимостях

Продукт: Gitlab

Вендор: gitlab

График релизов

Недавние уязвимости Gitlab

Количество 5 336

CVE-2020-10087

почти 6 лет назад

GitLab before 12.8.2 allows Information Disclosure. Badge images were not being proxied, causing mixed content warnings as well as leaking the IP address of the user.

CVSS3: 7.5

EPSS: Низкий

CVE-2020-10087

почти 6 лет назад

GitLab before 12.8.2 allows Information Disclosure. Badge images were ...

CVSS3: 7.5

EPSS: Низкий

CVE-2020-10086

почти 6 лет назад

GitLab 10.4 through 12.8.1 allows Directory Traversal. A particular endpoint was vulnerable to a directory traversal vulnerability, leading to arbitrary file read.

CVSS3: 5.3

EPSS: Низкий

CVE-2020-10086

почти 6 лет назад

GitLab 10.4 through 12.8.1 allows Directory Traversal. A particular en ...

CVSS3: 5.3

EPSS: Низкий

CVE-2020-10085

почти 6 лет назад

GitLab 12.3.5 through 12.8.1 allows Information Disclosure. A particular view was exposing merge private merge request titles.

CVSS3: 5.3

EPSS: Низкий

CVE-2020-10085

почти 6 лет назад

GitLab 12.3.5 through 12.8.1 allows Information Disclosure. A particul ...

CVSS3: 5.3

EPSS: Низкий

CVE-2020-10084

почти 6 лет назад

GitLab EE 11.6 through 12.8.1 allows Information Disclosure. Sending a specially crafted request to the vulnerability_feedback endpoint could result in the exposure of a private project namespace

CVSS3: 5.3

EPSS: Низкий

CVE-2020-10084

почти 6 лет назад

GitLab EE 11.6 through 12.8.1 allows Information Disclosure. Sending a ...

CVSS3: 5.3

EPSS: Низкий

CVE-2020-10083

почти 6 лет назад

GitLab 12.7 through 12.8.1 has Insecure Permissions. Under certain conditions involving groups, project authorization changes were not being applied.

CVSS3: 9.1

EPSS: Низкий

CVE-2020-10083

почти 6 лет назад

GitLab 12.7 through 12.8.1 has Insecure Permissions. Under certain con ...

CVSS3: 9.1

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано 1
CVE-2020-10087 GitLab before 12.8.2 allows Information Disclosure. Badge images were not being proxied, causing mixed content warnings as well as leaking the IP address of the user.	CVSS3: 7.5	0% Низкий	почти 6 лет назад
CVE-2020-10087 GitLab before 12.8.2 allows Information Disclosure. Badge images were ...	CVSS3: 7.5	0% Низкий	почти 6 лет назад
CVE-2020-10086 GitLab 10.4 through 12.8.1 allows Directory Traversal. A particular endpoint was vulnerable to a directory traversal vulnerability, leading to arbitrary file read.	CVSS3: 5.3	0% Низкий	почти 6 лет назад
CVE-2020-10086 GitLab 10.4 through 12.8.1 allows Directory Traversal. A particular en ...	CVSS3: 5.3	0% Низкий	почти 6 лет назад
CVE-2020-10085 GitLab 12.3.5 through 12.8.1 allows Information Disclosure. A particular view was exposing merge private merge request titles.	CVSS3: 5.3	0% Низкий	почти 6 лет назад
CVE-2020-10085 GitLab 12.3.5 through 12.8.1 allows Information Disclosure. A particul ...	CVSS3: 5.3	0% Низкий	почти 6 лет назад
CVE-2020-10084 GitLab EE 11.6 through 12.8.1 allows Information Disclosure. Sending a specially crafted request to the vulnerability_feedback endpoint could result in the exposure of a private project namespace	CVSS3: 5.3	0% Низкий	почти 6 лет назад
CVE-2020-10084 GitLab EE 11.6 through 12.8.1 allows Information Disclosure. Sending a ...	CVSS3: 5.3	0% Низкий	почти 6 лет назад
CVE-2020-10083 GitLab 12.7 through 12.8.1 has Insecure Permissions. Under certain conditions involving groups, project authorization changes were not being applied.	CVSS3: 9.1	0% Низкий	почти 6 лет назад
CVE-2020-10083 GitLab 12.7 through 12.8.1 has Insecure Permissions. Under certain con ...	CVSS3: 9.1	0% Низкий	почти 6 лет назад

Уязвимостей на страницу