Gitlab — веб-платформа для управления проектами и репозиториями программного кода, работа которой основана на популярной системе контроля версий Git.
Релизный цикл, информация об уязвимостях
График релизов
Количество 5 203
CVE-2019-15725
An issue was discovered in GitLab Community and Enterprise Edition 12. ...
CVE-2019-15724
An issue was discovered in GitLab Community and Enterprise Edition 11.10 through 12.2.1. Label descriptions are vulnerable to HTML injection.
CVE-2019-15724
An issue was discovered in GitLab Community and Enterprise Edition 11. ...
CVE-2019-15723
An issue was discovered in GitLab Community and Enterprise Edition 11.9.x and 11.10.x before 11.10.1. Merge requests created by email could be used to bypass push rules in certain situations.
CVE-2019-15723
An issue was discovered in GitLab Community and Enterprise Edition 11. ...
CVE-2019-15722
An issue was discovered in GitLab Community and Enterprise Edition 8.15 through 12.2.1. Particular mathematical expressions in GitLab Markdown can exhaust client resources.
CVE-2019-15722
An issue was discovered in GitLab Community and Enterprise Edition 8.1 ...
CVE-2019-15721
An issue was discovered in GitLab Community and Enterprise Edition 10.8 through 12.2.1. An internal endpoint unintentionally allowed group maintainers to view and edit group runner settings.
CVE-2019-15721
An issue was discovered in GitLab Community and Enterprise Edition 10. ...
CVE-2019-15728
An issue was discovered in GitLab Community and Enterprise Edition 10.1 through 12.2.1. Protections against SSRF attacks on the Kubernetes integration are insufficient, which could have allowed an attacker to request any local network resource accessible from the GitLab server.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано 1 | |
|---|---|---|---|---|
| CVE-2019-15725 An issue was discovered in GitLab Community and Enterprise Edition 12. ... | CVSS3: 7.5 | 0% Низкий | больше 6 лет назад |
 | CVE-2019-15724 An issue was discovered in GitLab Community and Enterprise Edition 11.10 through 12.2.1. Label descriptions are vulnerable to HTML injection. | CVSS3: 6.1 | 0% Низкий | больше 6 лет назад |
| CVE-2019-15724 An issue was discovered in GitLab Community and Enterprise Edition 11. ... | CVSS3: 6.1 | 0% Низкий | больше 6 лет назад |
| CVE-2019-15723 An issue was discovered in GitLab Community and Enterprise Edition 11.9.x and 11.10.x before 11.10.1. Merge requests created by email could be used to bypass push rules in certain situations. | CVSS3: 5.3 | 0% Низкий | больше 6 лет назад |
| CVE-2019-15723 An issue was discovered in GitLab Community and Enterprise Edition 11. ... | CVSS3: 5.3 | 0% Низкий | больше 6 лет назад |
| CVE-2019-15722 An issue was discovered in GitLab Community and Enterprise Edition 8.15 through 12.2.1. Particular mathematical expressions in GitLab Markdown can exhaust client resources. | CVSS3: 7.5 | 0% Низкий | больше 6 лет назад |
| CVE-2019-15722 An issue was discovered in GitLab Community and Enterprise Edition 8.1 ... | CVSS3: 7.5 | 0% Низкий | больше 6 лет назад |
| CVE-2019-15721 An issue was discovered in GitLab Community and Enterprise Edition 10.8 through 12.2.1. An internal endpoint unintentionally allowed group maintainers to view and edit group runner settings. | CVSS3: 5.4 | 0% Низкий | больше 6 лет назад |
| CVE-2019-15721 An issue was discovered in GitLab Community and Enterprise Edition 10. ... | CVSS3: 5.4 | 0% Низкий | больше 6 лет назад |
 | CVE-2019-15728 An issue was discovered in GitLab Community and Enterprise Edition 10.1 through 12.2.1. Protections against SSRF attacks on the Kubernetes integration are insufficient, which could have allowed an attacker to request any local network resource accessible from the GitLab server. | CVSS3: 7.5 | 0% Низкий | больше 6 лет назад |
Уязвимостей на страницу