Логотип exploitDog
product: "gitlab"
Консоль
Логотип exploitDog

exploitDog

product: "gitlab"
Gitlab

Gitlabвеб-платформа для управления проектами и репозиториями программного кода, работа которой основана на популярной системе контроля версий Git.

Релизный цикл, информация об уязвимостях

Продукт: Gitlab
Вендор: gitlab

График релизов

18.018.118.220252026

Недавние уязвимости Gitlab

Количество 4 670

nvd логотип

CVE-2017-0916

больше 7 лет назад

Gitlab Community Edition version 10.3 is vulnerable to a lack of input validation in the system_hook_push queue through web hook component resulting in remote code execution.

CVSS3: 9.8
EPSS: Низкий
debian логотип

CVE-2017-0916

больше 7 лет назад

Gitlab Community Edition version 10.3 is vulnerable to a lack of input ...

CVSS3: 9.8
EPSS: Низкий
nvd логотип

CVE-2017-0915

больше 7 лет назад

Gitlab Community Edition version 10.2.4 is vulnerable to a lack of input validation in the GitlabProjectsImportService resulting in remote code execution.

CVSS3: 9.8
EPSS: Низкий
debian логотип

CVE-2017-0915

больше 7 лет назад

Gitlab Community Edition version 10.2.4 is vulnerable to a lack of inp ...

CVSS3: 9.8
EPSS: Низкий
nvd логотип

CVE-2017-0914

больше 7 лет назад

Gitlab Community and Enterprise Editions version 10.1, 10.2, and 10.2.4 are vulnerable to a SQL injection in the MilestoneFinder component resulting in disclosure of all data in a GitLab instance's database.

CVSS3: 7.5
EPSS: Низкий
debian логотип

CVE-2017-0914

больше 7 лет назад

Gitlab Community and Enterprise Editions version 10.1, 10.2, and 10.2. ...

CVSS3: 7.5
EPSS: Низкий
ubuntu логотип

CVE-2017-0926

больше 7 лет назад

Gitlab Community Edition version 10.3 is vulnerable to an improper authorization issue in the Oauth sign-in component resulting in unauthorized user login.

CVSS3: 8.8
EPSS: Низкий
ubuntu логотип

CVE-2017-0915

больше 7 лет назад

Gitlab Community Edition version 10.2.4 is vulnerable to a lack of input validation in the GitlabProjectsImportService resulting in remote code execution.

CVSS3: 9.8
EPSS: Низкий
ubuntu логотип

CVE-2017-0924

больше 7 лет назад

Gitlab Community Edition version 10.2.4 is vulnerable to lack of input validation in the labels component resulting in persistent cross site scripting.

CVSS3: 6.1
EPSS: Низкий
ubuntu логотип

CVE-2017-0914

больше 7 лет назад

Gitlab Community and Enterprise Editions version 10.1, 10.2, and 10.2.4 are vulnerable to a SQL injection in the MilestoneFinder component resulting in disclosure of all data in a GitLab instance's database.

CVSS3: 7.5
EPSS: Низкий

Уязвимостей на страницу

Уязвимость
CVSS
EPSS
Опубликовано
1
nvd логотип
CVE-2017-0916

Gitlab Community Edition version 10.3 is vulnerable to a lack of input validation in the system_hook_push queue through web hook component resulting in remote code execution.

CVSS3: 9.8
1%
Низкий
больше 7 лет назад
debian логотип
CVE-2017-0916

Gitlab Community Edition version 10.3 is vulnerable to a lack of input ...

CVSS3: 9.8
1%
Низкий
больше 7 лет назад
nvd логотип
CVE-2017-0915

Gitlab Community Edition version 10.2.4 is vulnerable to a lack of input validation in the GitlabProjectsImportService resulting in remote code execution.

CVSS3: 9.8
1%
Низкий
больше 7 лет назад
debian логотип
CVE-2017-0915

Gitlab Community Edition version 10.2.4 is vulnerable to a lack of inp ...

CVSS3: 9.8
1%
Низкий
больше 7 лет назад
nvd логотип
CVE-2017-0914

Gitlab Community and Enterprise Editions version 10.1, 10.2, and 10.2.4 are vulnerable to a SQL injection in the MilestoneFinder component resulting in disclosure of all data in a GitLab instance's database.

CVSS3: 7.5
0%
Низкий
больше 7 лет назад
debian логотип
CVE-2017-0914

Gitlab Community and Enterprise Editions version 10.1, 10.2, and 10.2. ...

CVSS3: 7.5
0%
Низкий
больше 7 лет назад
ubuntu логотип
CVE-2017-0926

Gitlab Community Edition version 10.3 is vulnerable to an improper authorization issue in the Oauth sign-in component resulting in unauthorized user login.

CVSS3: 8.8
0%
Низкий
больше 7 лет назад
ubuntu логотип
CVE-2017-0915

Gitlab Community Edition version 10.2.4 is vulnerable to a lack of input validation in the GitlabProjectsImportService resulting in remote code execution.

CVSS3: 9.8
1%
Низкий
больше 7 лет назад
ubuntu логотип
CVE-2017-0924

Gitlab Community Edition version 10.2.4 is vulnerable to lack of input validation in the labels component resulting in persistent cross site scripting.

CVSS3: 6.1
0%
Низкий
больше 7 лет назад
ubuntu логотип
CVE-2017-0914

Gitlab Community and Enterprise Editions version 10.1, 10.2, and 10.2.4 are vulnerable to a SQL injection in the MilestoneFinder component resulting in disclosure of all data in a GitLab instance's database.

CVSS3: 7.5
0%
Низкий
больше 7 лет назад

Уязвимостей на страницу


Поделиться