Gitlab — веб-платформа для управления проектами и репозиториями программного кода, работа которой основана на популярной системе контроля версий Git.
Релизный цикл, информация об уязвимостях
График релизов
Количество 4 670

CVE-2017-0916
Gitlab Community Edition version 10.3 is vulnerable to a lack of input validation in the system_hook_push queue through web hook component resulting in remote code execution.
CVE-2017-0916
Gitlab Community Edition version 10.3 is vulnerable to a lack of input ...

CVE-2017-0915
Gitlab Community Edition version 10.2.4 is vulnerable to a lack of input validation in the GitlabProjectsImportService resulting in remote code execution.
CVE-2017-0915
Gitlab Community Edition version 10.2.4 is vulnerable to a lack of inp ...

CVE-2017-0914
Gitlab Community and Enterprise Editions version 10.1, 10.2, and 10.2.4 are vulnerable to a SQL injection in the MilestoneFinder component resulting in disclosure of all data in a GitLab instance's database.
CVE-2017-0914
Gitlab Community and Enterprise Editions version 10.1, 10.2, and 10.2. ...

CVE-2017-0926
Gitlab Community Edition version 10.3 is vulnerable to an improper authorization issue in the Oauth sign-in component resulting in unauthorized user login.

CVE-2017-0915
Gitlab Community Edition version 10.2.4 is vulnerable to a lack of input validation in the GitlabProjectsImportService resulting in remote code execution.

CVE-2017-0924
Gitlab Community Edition version 10.2.4 is vulnerable to lack of input validation in the labels component resulting in persistent cross site scripting.

CVE-2017-0914
Gitlab Community and Enterprise Editions version 10.1, 10.2, and 10.2.4 are vulnerable to a SQL injection in the MilestoneFinder component resulting in disclosure of all data in a GitLab instance's database.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано 1 | |
---|---|---|---|---|
![]() | CVE-2017-0916 Gitlab Community Edition version 10.3 is vulnerable to a lack of input validation in the system_hook_push queue through web hook component resulting in remote code execution. | CVSS3: 9.8 | 1% Низкий | больше 7 лет назад |
CVE-2017-0916 Gitlab Community Edition version 10.3 is vulnerable to a lack of input ... | CVSS3: 9.8 | 1% Низкий | больше 7 лет назад | |
![]() | CVE-2017-0915 Gitlab Community Edition version 10.2.4 is vulnerable to a lack of input validation in the GitlabProjectsImportService resulting in remote code execution. | CVSS3: 9.8 | 1% Низкий | больше 7 лет назад |
CVE-2017-0915 Gitlab Community Edition version 10.2.4 is vulnerable to a lack of inp ... | CVSS3: 9.8 | 1% Низкий | больше 7 лет назад | |
![]() | CVE-2017-0914 Gitlab Community and Enterprise Editions version 10.1, 10.2, and 10.2.4 are vulnerable to a SQL injection in the MilestoneFinder component resulting in disclosure of all data in a GitLab instance's database. | CVSS3: 7.5 | 0% Низкий | больше 7 лет назад |
CVE-2017-0914 Gitlab Community and Enterprise Editions version 10.1, 10.2, and 10.2. ... | CVSS3: 7.5 | 0% Низкий | больше 7 лет назад | |
![]() | CVE-2017-0926 Gitlab Community Edition version 10.3 is vulnerable to an improper authorization issue in the Oauth sign-in component resulting in unauthorized user login. | CVSS3: 8.8 | 0% Низкий | больше 7 лет назад |
![]() | CVE-2017-0915 Gitlab Community Edition version 10.2.4 is vulnerable to a lack of input validation in the GitlabProjectsImportService resulting in remote code execution. | CVSS3: 9.8 | 1% Низкий | больше 7 лет назад |
![]() | CVE-2017-0924 Gitlab Community Edition version 10.2.4 is vulnerable to lack of input validation in the labels component resulting in persistent cross site scripting. | CVSS3: 6.1 | 0% Низкий | больше 7 лет назад |
![]() | CVE-2017-0914 Gitlab Community and Enterprise Editions version 10.1, 10.2, and 10.2.4 are vulnerable to a SQL injection in the MilestoneFinder component resulting in disclosure of all data in a GitLab instance's database. | CVSS3: 7.5 | 0% Низкий | больше 7 лет назад |
Уязвимостей на страницу