Gitlab — веб-платформа для управления проектами и репозиториями программного кода, работа которой основана на популярной системе контроля версий Git.
Релизный цикл, информация об уязвимостях
График релизов
Количество 5 268
CVE-2013-4582
The (1) create_branch, (2) create_tag, (3) import_project, and (4) fork_project functions in lib/gitlab_projects.rb in GitLab 5.0 before 5.4.2, Community Edition before 6.2.4, Enterprise Edition before 6.2.1 and gitlab-shell before 1.7.8 allows remote authenticated users to include information from local files into the metadata of a Git repository via the web interface.
CVE-2013-4582
The (1) create_branch, (2) create_tag, (3) import_project, and (4) for ...
CVE-2019-5474
An authorization issue was discovered in GitLab EE < 12.1.2, < 12.0.4, and < 11.11.6 allowing the merge request approval rules to be overridden without appropriate permissions.
CVE-2019-5474
An authorization issue was discovered in GitLab EE < 12.1.2, < 12.0.4, ...
CVE-2019-5472
An authorization issue was discovered in Gitlab versions < 12.1.2, < 12.0.4, and < 11.11.6 that prevented owners and maintainer to delete epic comments.
CVE-2019-5472
An authorization issue was discovered in Gitlab versions < 12.1.2, < 1 ...
CVE-2019-5470
An information disclosure issue was discovered GitLab versions < 12.1.2, < 12.0.4, and < 11.11.6 in the security dashboard which could result in disclosure of vulnerability feedback information.
CVE-2019-5470
An information disclosure issue was discovered GitLab versions < 12.1. ...
CVE-2019-5468
An privilege escalation issue was discovered in Gitlab versions < 12.1.2, < 12.0.4, and < 11.11.6 when Mattermost slash commands are used with a blocked account.
CVE-2019-5468
An privilege escalation issue was discovered in Gitlab versions < 12.1 ...
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано 1 | |
|---|---|---|---|---|
 | CVE-2013-4582 The (1) create_branch, (2) create_tag, (3) import_project, and (4) fork_project functions in lib/gitlab_projects.rb in GitLab 5.0 before 5.4.2, Community Edition before 6.2.4, Enterprise Edition before 6.2.1 and gitlab-shell before 1.7.8 allows remote authenticated users to include information from local files into the metadata of a Git repository via the web interface. | CVSS3: 6.5 | 0% Низкий | около 6 лет назад |
| CVE-2013-4582 The (1) create_branch, (2) create_tag, (3) import_project, and (4) for ... | CVSS3: 6.5 | 0% Низкий | около 6 лет назад |
| CVE-2019-5474 An authorization issue was discovered in GitLab EE < 12.1.2, < 12.0.4, and < 11.11.6 allowing the merge request approval rules to be overridden without appropriate permissions. | CVSS3: 6.5 | 0% Низкий | около 6 лет назад |
| CVE-2019-5474 An authorization issue was discovered in GitLab EE < 12.1.2, < 12.0.4, ... | CVSS3: 6.5 | 0% Низкий | около 6 лет назад |
| CVE-2019-5472 An authorization issue was discovered in Gitlab versions < 12.1.2, < 12.0.4, and < 11.11.6 that prevented owners and maintainer to delete epic comments. | CVSS3: 7.5 | 0% Низкий | около 6 лет назад |
| CVE-2019-5472 An authorization issue was discovered in Gitlab versions < 12.1.2, < 1 ... | CVSS3: 7.5 | 0% Низкий | около 6 лет назад |
| CVE-2019-5470 An information disclosure issue was discovered GitLab versions < 12.1.2, < 12.0.4, and < 11.11.6 in the security dashboard which could result in disclosure of vulnerability feedback information. | CVSS3: 7.5 | 0% Низкий | около 6 лет назад |
| CVE-2019-5470 An information disclosure issue was discovered GitLab versions < 12.1. ... | CVSS3: 7.5 | 0% Низкий | около 6 лет назад |
| CVE-2019-5468 An privilege escalation issue was discovered in Gitlab versions < 12.1.2, < 12.0.4, and < 11.11.6 when Mattermost slash commands are used with a blocked account. | CVSS3: 8.8 | 1% Низкий | около 6 лет назад |
| CVE-2019-5468 An privilege escalation issue was discovered in Gitlab versions < 12.1 ... | CVSS3: 8.8 | 1% Низкий | около 6 лет назад |
Уязвимостей на страницу