exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 5 336

CVE-2020-13283

больше 5 лет назад

For GitLab before 13.0.12, 13.1.6, 13.2.3 a cross-site scripting vulnerability exists in the issues list via milestone title.

CVSS3: 7.3

EPSS: Низкий

CVE-2020-13283

больше 5 лет назад

For GitLab before 13.0.12, 13.1.6, 13.2.3 a cross-site scripting vulnerability exists in the issues list via milestone title.

CVSS3: 7.3

EPSS: Низкий

CVE-2020-13283

больше 5 лет назад

For GitLab before 13.0.12, 13.1.6, 13.2.3 a cross-site scripting vulne ...

CVSS3: 7.3

EPSS: Низкий

CVE-2020-13282

больше 5 лет назад

For GitLab before 13.0.12, 13.1.6, 13.2.3 after a group transfer occurs, members from a parent group keep their access level on the subgroup leading to improper access.

CVSS3: 3.1

EPSS: Низкий

CVE-2020-13282

больше 5 лет назад

For GitLab before 13.0.12, 13.1.6, 13.2.3 after a group transfer occurs, members from a parent group keep their access level on the subgroup leading to improper access.

CVSS3: 3.1

EPSS: Низкий

CVE-2020-13282

больше 5 лет назад

For GitLab before 13.0.12, 13.1.6, 13.2.3 after a group transfer occur ...

CVSS3: 3.1

EPSS: Низкий

CVE-2020-13281

больше 5 лет назад

For GitLab before 13.0.12, 13.1.6, 13.2.3 a denial of service exists in the project import feature

CVSS3: 6.5

EPSS: Низкий

CVE-2020-13281

больше 5 лет назад

For GitLab before 13.0.12, 13.1.6, 13.2.3 a denial of service exists in the project import feature

CVSS3: 6.5

EPSS: Низкий

CVE-2020-13281

больше 5 лет назад

For GitLab before 13.0.12, 13.1.6, 13.2.3 a denial of service exists i ...

CVSS3: 6.5

EPSS: Низкий

CVE-2020-13280

больше 5 лет назад

For GitLab before 13.0.12, 13.1.6, 13.2.3 a memory exhaustion flaw exists due to excessive logging of an invite email error message.

CVSS3: 6.5

EPSS: Низкий

CVE-2020-13280

больше 5 лет назад

For GitLab before 13.0.12, 13.1.6, 13.2.3 a memory exhaustion flaw exists due to excessive logging of an invite email error message.

CVSS3: 6.5

EPSS: Низкий

CVE-2020-13280

больше 5 лет назад

For GitLab before 13.0.12, 13.1.6, 13.2.3 a memory exhaustion flaw exi ...

CVSS3: 6.5

EPSS: Низкий

CVE-2020-13277

больше 5 лет назад

An authorization issue in the mirroring logic allowed read access to private repositories in GitLab CE/EE 10.6 and later through 13.0.5

CVSS3: 6.3

EPSS: Низкий

CVE-2020-13277

больше 5 лет назад

An authorization issue in the mirroring logic allowed read access to private repositories in GitLab CE/EE 10.6 and later through 13.0.5

CVSS3: 6.3

EPSS: Низкий

CVE-2020-13277

больше 5 лет назад

An authorization issue in the mirroring logic allowed read access to p ...

CVSS3: 6.3

EPSS: Низкий

CVE-2020-13276

больше 5 лет назад

User is allowed to set an email as a notification email even without verifying the new email in all previous GitLab CE/EE versions through 13.0.1

CVSS3: 7.4

EPSS: Низкий

CVE-2020-13276

больше 5 лет назад

User is allowed to set an email as a notification email even without verifying the new email in all previous GitLab CE/EE versions through 13.0.1

CVSS3: 7.4

EPSS: Низкий

CVE-2020-13276

больше 5 лет назад

User is allowed to set an email as a notification email even without v ...

CVSS3: 7.4

EPSS: Низкий

CVE-2020-13275

больше 5 лет назад

A user with an unverified email address could request an access to domain restricted groups in GitLab EE 12.2 and later through 13.0.1

CVSS3: 8

EPSS: Низкий

CVE-2020-13275

больше 5 лет назад

A user with an unverified email address could request an access to domain restricted groups in GitLab EE 12.2 and later through 13.0.1

CVSS3: 8

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2020-13283 For GitLab before 13.0.12, 13.1.6, 13.2.3 a cross-site scripting vulnerability exists in the issues list via milestone title.	CVSS3: 7.3	0% Низкий	больше 5 лет назад
CVE-2020-13283 For GitLab before 13.0.12, 13.1.6, 13.2.3 a cross-site scripting vulnerability exists in the issues list via milestone title.	CVSS3: 7.3	0% Низкий	больше 5 лет назад
CVE-2020-13283 For GitLab before 13.0.12, 13.1.6, 13.2.3 a cross-site scripting vulne ...	CVSS3: 7.3	0% Низкий	больше 5 лет назад
CVE-2020-13282 For GitLab before 13.0.12, 13.1.6, 13.2.3 after a group transfer occurs, members from a parent group keep their access level on the subgroup leading to improper access.	CVSS3: 3.1	0% Низкий	больше 5 лет назад
CVE-2020-13282 For GitLab before 13.0.12, 13.1.6, 13.2.3 after a group transfer occurs, members from a parent group keep their access level on the subgroup leading to improper access.	CVSS3: 3.1	0% Низкий	больше 5 лет назад
CVE-2020-13282 For GitLab before 13.0.12, 13.1.6, 13.2.3 after a group transfer occur ...	CVSS3: 3.1	0% Низкий	больше 5 лет назад
CVE-2020-13281 For GitLab before 13.0.12, 13.1.6, 13.2.3 a denial of service exists in the project import feature	CVSS3: 6.5	0% Низкий	больше 5 лет назад
CVE-2020-13281 For GitLab before 13.0.12, 13.1.6, 13.2.3 a denial of service exists in the project import feature	CVSS3: 6.5	0% Низкий	больше 5 лет назад
CVE-2020-13281 For GitLab before 13.0.12, 13.1.6, 13.2.3 a denial of service exists i ...	CVSS3: 6.5	0% Низкий	больше 5 лет назад
CVE-2020-13280 For GitLab before 13.0.12, 13.1.6, 13.2.3 a memory exhaustion flaw exists due to excessive logging of an invite email error message.	CVSS3: 6.5	0% Низкий	больше 5 лет назад
CVE-2020-13280 For GitLab before 13.0.12, 13.1.6, 13.2.3 a memory exhaustion flaw exists due to excessive logging of an invite email error message.	CVSS3: 6.5	0% Низкий	больше 5 лет назад
CVE-2020-13280 For GitLab before 13.0.12, 13.1.6, 13.2.3 a memory exhaustion flaw exi ...	CVSS3: 6.5	0% Низкий	больше 5 лет назад
CVE-2020-13277 An authorization issue in the mirroring logic allowed read access to private repositories in GitLab CE/EE 10.6 and later through 13.0.5	CVSS3: 6.3	5% Низкий	больше 5 лет назад
CVE-2020-13277 An authorization issue in the mirroring logic allowed read access to private repositories in GitLab CE/EE 10.6 and later through 13.0.5	CVSS3: 6.3	5% Низкий	больше 5 лет назад
CVE-2020-13277 An authorization issue in the mirroring logic allowed read access to p ...	CVSS3: 6.3	5% Низкий	больше 5 лет назад
CVE-2020-13276 User is allowed to set an email as a notification email even without verifying the new email in all previous GitLab CE/EE versions through 13.0.1	CVSS3: 7.4	0% Низкий	больше 5 лет назад
CVE-2020-13276 User is allowed to set an email as a notification email even without verifying the new email in all previous GitLab CE/EE versions through 13.0.1	CVSS3: 7.4	0% Низкий	больше 5 лет назад
CVE-2020-13276 User is allowed to set an email as a notification email even without v ...	CVSS3: 7.4	0% Низкий	больше 5 лет назад
CVE-2020-13275 A user with an unverified email address could request an access to domain restricted groups in GitLab EE 12.2 and later through 13.0.1	CVSS3: 8	0% Низкий	больше 5 лет назад
CVE-2020-13275 A user with an unverified email address could request an access to domain restricted groups in GitLab EE 12.2 and later through 13.0.1	CVSS3: 8	0% Низкий	больше 5 лет назад

Уязвимостей на страницу