Gitlab — веб-платформа для управления проектами и репозиториями программного кода, работа которой основана на популярной системе контроля версий Git.

Релизный цикл, информация об уязвимостях

Продукт: Gitlab

Вендор: gitlab

График релизов

Недавние уязвимости Gitlab

Количество 5 237

CVE-2018-12605

больше 7 лет назад

An issue was discovered in GitLab Community Edition and Enterprise Edi ...

CVSS3: 5.4

EPSS: Низкий

CVE-2018-12605

больше 7 лет назад

An issue was discovered in GitLab Community Edition and Enterprise Edition 10.7.x before 10.7.6. The usage of 'url_for' contained a XSS issue due to it allowing arbitrary protocols as a parameter.

CVSS3: 5.4

EPSS: Низкий

CVE-2018-12607

больше 7 лет назад

An issue was discovered in GitLab Community Edition and Enterprise Edition before 10.7.6, 10.8.x before 10.8.5, and 11.x before 11.0.1. The charts feature contained a persistent XSS issue due to a lack of output encoding.

CVSS3: 5.4

EPSS: Низкий

CVE-2018-12606

больше 7 лет назад

An issue was discovered in GitLab Community Edition and Enterprise Edition before 10.7.6, 10.8.x before 10.8.5, and 11.x before 11.0.1. The wiki contains a persistent XSS issue due to a lack of output encoding affecting a specific markdown feature.

CVSS3: 5.4

EPSS: Низкий

CVE-2018-14606

больше 7 лет назад

An issue was discovered in GitLab Community and Enterprise Edition before 10.8.7, 11.0.x before 11.0.5, and 11.1.x before 11.1.2. XSS can occur via a Milestone name during a promotion.

CVSS3: 5.4

EPSS: Низкий

CVE-2018-14606

больше 7 лет назад

An issue was discovered in GitLab Community and Enterprise Edition bef ...

CVSS3: 5.4

EPSS: Низкий

CVE-2018-14605

больше 7 лет назад

An issue was discovered in GitLab Community and Enterprise Edition before 10.8.7, 11.0.x before 11.0.5, and 11.1.x before 11.1.2. XSS can occur in the branch name during a Web IDE file commit.

CVSS3: 5.4

EPSS: Низкий

CVE-2018-14605

больше 7 лет назад

An issue was discovered in GitLab Community and Enterprise Edition bef ...

CVSS3: 5.4

EPSS: Низкий

CVE-2018-14604

больше 7 лет назад

An issue was discovered in GitLab Community and Enterprise Edition before 10.8.7, 11.0.x before 11.0.5, and 11.1.x before 11.1.2. XSS can occur in the tooltip of the job inside the CI/CD pipeline.

CVSS3: 6.1

EPSS: Низкий

CVE-2018-14604

больше 7 лет назад

An issue was discovered in GitLab Community and Enterprise Edition bef ...

CVSS3: 6.1

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано 1
CVE-2018-12605 An issue was discovered in GitLab Community Edition and Enterprise Edi ...	CVSS3: 5.4	0% Низкий	больше 7 лет назад
CVE-2018-12605 An issue was discovered in GitLab Community Edition and Enterprise Edition 10.7.x before 10.7.6. The usage of 'url_for' contained a XSS issue due to it allowing arbitrary protocols as a parameter.	CVSS3: 5.4	0% Низкий	больше 7 лет назад
CVE-2018-12607 An issue was discovered in GitLab Community Edition and Enterprise Edition before 10.7.6, 10.8.x before 10.8.5, and 11.x before 11.0.1. The charts feature contained a persistent XSS issue due to a lack of output encoding.	CVSS3: 5.4	0% Низкий	больше 7 лет назад
CVE-2018-12606 An issue was discovered in GitLab Community Edition and Enterprise Edition before 10.7.6, 10.8.x before 10.8.5, and 11.x before 11.0.1. The wiki contains a persistent XSS issue due to a lack of output encoding affecting a specific markdown feature.	CVSS3: 5.4	0% Низкий	больше 7 лет назад
CVE-2018-14606 An issue was discovered in GitLab Community and Enterprise Edition before 10.8.7, 11.0.x before 11.0.5, and 11.1.x before 11.1.2. XSS can occur via a Milestone name during a promotion.	CVSS3: 5.4	0% Низкий	больше 7 лет назад
CVE-2018-14606 An issue was discovered in GitLab Community and Enterprise Edition bef ...	CVSS3: 5.4	0% Низкий	больше 7 лет назад
CVE-2018-14605 An issue was discovered in GitLab Community and Enterprise Edition before 10.8.7, 11.0.x before 11.0.5, and 11.1.x before 11.1.2. XSS can occur in the branch name during a Web IDE file commit.	CVSS3: 5.4	0% Низкий	больше 7 лет назад
CVE-2018-14605 An issue was discovered in GitLab Community and Enterprise Edition bef ...	CVSS3: 5.4	0% Низкий	больше 7 лет назад
CVE-2018-14604 An issue was discovered in GitLab Community and Enterprise Edition before 10.8.7, 11.0.x before 11.0.5, and 11.1.x before 11.1.2. XSS can occur in the tooltip of the job inside the CI/CD pipeline.	CVSS3: 6.1	0% Низкий	больше 7 лет назад
CVE-2018-14604 An issue was discovered in GitLab Community and Enterprise Edition bef ...	CVSS3: 6.1	0% Низкий	больше 7 лет назад

Уязвимостей на страницу