Gitlab — веб-платформа для управления проектами и репозиториями программного кода, работа которой основана на популярной системе контроля версий Git.

Релизный цикл, информация об уязвимостях

Продукт: Gitlab

Вендор: gitlab

График релизов

Недавние уязвимости Gitlab

Количество 4 556

CVE-2013-4581

около 11 лет назад

GitLab 5.0 before 5.4.2, Community Edition before 6.2.4, Enterprise Edition before 6.2.1 and gitlab-shell before 1.7.8 allows remote attackers to execute arbitrary code via a crafted change using SSH.

CVSS2: 6.8

EPSS: Низкий

CVE-2013-4581

около 11 лет назад

GitLab 5.0 before 5.4.2, Community Edition before 6.2.4, Enterprise Ed ...

CVSS2: 6.8

EPSS: Низкий

CVE-2013-4580

около 11 лет назад

GitLab before 5.4.2, Community Edition before 6.2.4, and Enterprise Edition before 6.2.1, when using a MySQL backend, allows remote attackers to impersonate arbitrary users and bypass authentication via unspecified API calls.

CVSS2: 6.8

EPSS: Низкий

CVE-2013-4580

около 11 лет назад

GitLab before 5.4.2, Community Edition before 6.2.4, and Enterprise Ed ...

CVSS2: 6.8

EPSS: Низкий

CVE-2013-7316

больше 11 лет назад

Cross-site scripting (XSS) vulnerability in GitLab 6.0 and other versions before 6.5.0 allows remote attackers to inject arbitrary web script or HTML via a crafted HTML file, as demonstrated by README.html.

CVSS2: 4.3

EPSS: Низкий

CVE-2013-7316

больше 11 лет назад

Cross-site scripting (XSS) vulnerability in GitLab 6.0 and other versi ...

CVSS2: 4.3

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано 1
CVE-2013-4581 GitLab 5.0 before 5.4.2, Community Edition before 6.2.4, Enterprise Edition before 6.2.1 and gitlab-shell before 1.7.8 allows remote attackers to execute arbitrary code via a crafted change using SSH.	CVSS2: 6.8	1% Низкий	около 11 лет назад
CVE-2013-4581 GitLab 5.0 before 5.4.2, Community Edition before 6.2.4, Enterprise Ed ...	CVSS2: 6.8	1% Низкий	около 11 лет назад
CVE-2013-4580 GitLab before 5.4.2, Community Edition before 6.2.4, and Enterprise Edition before 6.2.1, when using a MySQL backend, allows remote attackers to impersonate arbitrary users and bypass authentication via unspecified API calls.	CVSS2: 6.8	0% Низкий	около 11 лет назад
CVE-2013-4580 GitLab before 5.4.2, Community Edition before 6.2.4, and Enterprise Ed ...	CVSS2: 6.8	0% Низкий	около 11 лет назад
CVE-2013-7316 Cross-site scripting (XSS) vulnerability in GitLab 6.0 and other versions before 6.5.0 allows remote attackers to inject arbitrary web script or HTML via a crafted HTML file, as demonstrated by README.html.	CVSS2: 4.3	1% Низкий	больше 11 лет назад
CVE-2013-7316 Cross-site scripting (XSS) vulnerability in GitLab 6.0 and other versi ...	CVSS2: 4.3	1% Низкий	больше 11 лет назад

Уязвимостей на страницу