exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 5 336

CVE-2020-10078

почти 6 лет назад

GitLab 12.1 through 12.8.1 allows XSS. The merge request submission form was determined to have a stored cross-site scripting vulnerability.

CVSS3: 6.1

EPSS: Низкий

CVE-2020-10078

почти 6 лет назад

GitLab 12.1 through 12.8.1 allows XSS. The merge request submission form was determined to have a stored cross-site scripting vulnerability.

CVSS3: 6.1

EPSS: Низкий

CVE-2020-10078

почти 6 лет назад

GitLab 12.1 through 12.8.1 allows XSS. The merge request submission fo ...

CVSS3: 6.1

EPSS: Низкий

CVE-2020-10077

почти 6 лет назад

GitLab EE 3.0 through 12.8.1 allows SSRF. An internal investigation revealed that a particular deprecated service was creating a server side request forgery risk.

CVSS3: 9.8

EPSS: Низкий

CVE-2020-10077

почти 6 лет назад

GitLab EE 3.0 through 12.8.1 allows SSRF. An internal investigation re ...

CVSS3: 9.8

EPSS: Низкий

CVE-2020-10076

почти 6 лет назад

GitLab 12.1 through 12.8.1 allows XSS. A stored cross-site scripting vulnerability was discovered when displaying merge requests.

CVSS3: 6.1

EPSS: Низкий

CVE-2020-10076

почти 6 лет назад

GitLab 12.1 through 12.8.1 allows XSS. A stored cross-site scripting vulnerability was discovered when displaying merge requests.

CVSS3: 6.1

EPSS: Низкий

CVE-2020-10076

почти 6 лет назад

GitLab 12.1 through 12.8.1 allows XSS. A stored cross-site scripting v ...

CVSS3: 6.1

EPSS: Низкий

CVE-2020-10075

почти 6 лет назад

GitLab 12.5 through 12.8.1 allows HTML Injection. A particular error header was potentially susceptible to injection or potentially other vulnerabilities via unescaped input.

CVSS3: 6.1

EPSS: Низкий

CVE-2020-10075

почти 6 лет назад

GitLab 12.5 through 12.8.1 allows HTML Injection. A particular error header was potentially susceptible to injection or potentially other vulnerabilities via unescaped input.

CVSS3: 6.1

EPSS: Низкий

CVE-2020-10075

почти 6 лет назад

GitLab 12.5 through 12.8.1 allows HTML Injection. A particular error h ...

CVSS3: 6.1

EPSS: Низкий

CVE-2020-10074

почти 6 лет назад

GitLab 10.1 through 12.8.1 has Incorrect Access Control. A scenario was discovered in which a GitLab account could be taken over through an expired link.

CVSS3: 9.8

EPSS: Низкий

CVE-2020-10074

почти 6 лет назад

GitLab 10.1 through 12.8.1 has Incorrect Access Control. A scenario was discovered in which a GitLab account could be taken over through an expired link.

CVSS3: 9.8

EPSS: Низкий

CVE-2020-10074

почти 6 лет назад

GitLab 10.1 through 12.8.1 has Incorrect Access Control. A scenario wa ...

CVSS3: 9.8

EPSS: Низкий

CVE-2020-10073

почти 6 лет назад

GitLab EE 12.4.2 through 12.8.1 allows Denial of Service. It was internally discovered that a potential denial of service involving permissions checks could impact a project home page.

CVSS3: 7.5

EPSS: Низкий

CVE-2020-10073

почти 6 лет назад

GitLab EE 12.4.2 through 12.8.1 allows Denial of Service. It was inter ...

CVSS3: 7.5

EPSS: Низкий

CVE-2019-9890

почти 7 лет назад

An issue was discovered in GitLab Community and Enterprise Edition 10.x and 11.x before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. It has Insecure Permissions.

CVSS3: 9.1

EPSS: Низкий

CVE-2019-9890

почти 7 лет назад

An issue was discovered in GitLab Community and Enterprise Edition 10.x and 11.x before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. It has Insecure Permissions.

CVSS3: 9.1

EPSS: Низкий

CVE-2019-9890

почти 7 лет назад

An issue was discovered in GitLab Community and Enterprise Edition 10. ...

CVSS3: 9.1

EPSS: Низкий

CVE-2019-9866

больше 6 лет назад

An issue was discovered in GitLab Community and Enterprise Edition 11.x before 11.7.7 and 11.8.x before 11.8.3. It allows Information Disclosure.

CVSS3: 6.5

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2020-10078 GitLab 12.1 through 12.8.1 allows XSS. The merge request submission form was determined to have a stored cross-site scripting vulnerability.	CVSS3: 6.1	0% Низкий	почти 6 лет назад
CVE-2020-10078 GitLab 12.1 through 12.8.1 allows XSS. The merge request submission form was determined to have a stored cross-site scripting vulnerability.	CVSS3: 6.1	0% Низкий	почти 6 лет назад
CVE-2020-10078 GitLab 12.1 through 12.8.1 allows XSS. The merge request submission fo ...	CVSS3: 6.1	0% Низкий	почти 6 лет назад
CVE-2020-10077 GitLab EE 3.0 through 12.8.1 allows SSRF. An internal investigation revealed that a particular deprecated service was creating a server side request forgery risk.	CVSS3: 9.8	0% Низкий	почти 6 лет назад
CVE-2020-10077 GitLab EE 3.0 through 12.8.1 allows SSRF. An internal investigation re ...	CVSS3: 9.8	0% Низкий	почти 6 лет назад
CVE-2020-10076 GitLab 12.1 through 12.8.1 allows XSS. A stored cross-site scripting vulnerability was discovered when displaying merge requests.	CVSS3: 6.1	0% Низкий	почти 6 лет назад
CVE-2020-10076 GitLab 12.1 through 12.8.1 allows XSS. A stored cross-site scripting vulnerability was discovered when displaying merge requests.	CVSS3: 6.1	0% Низкий	почти 6 лет назад
CVE-2020-10076 GitLab 12.1 through 12.8.1 allows XSS. A stored cross-site scripting v ...	CVSS3: 6.1	0% Низкий	почти 6 лет назад
CVE-2020-10075 GitLab 12.5 through 12.8.1 allows HTML Injection. A particular error header was potentially susceptible to injection or potentially other vulnerabilities via unescaped input.	CVSS3: 6.1	0% Низкий	почти 6 лет назад
CVE-2020-10075 GitLab 12.5 through 12.8.1 allows HTML Injection. A particular error header was potentially susceptible to injection or potentially other vulnerabilities via unescaped input.	CVSS3: 6.1	0% Низкий	почти 6 лет назад
CVE-2020-10075 GitLab 12.5 through 12.8.1 allows HTML Injection. A particular error h ...	CVSS3: 6.1	0% Низкий	почти 6 лет назад
CVE-2020-10074 GitLab 10.1 through 12.8.1 has Incorrect Access Control. A scenario was discovered in which a GitLab account could be taken over through an expired link.	CVSS3: 9.8	0% Низкий	почти 6 лет назад
CVE-2020-10074 GitLab 10.1 through 12.8.1 has Incorrect Access Control. A scenario was discovered in which a GitLab account could be taken over through an expired link.	CVSS3: 9.8	0% Низкий	почти 6 лет назад
CVE-2020-10074 GitLab 10.1 through 12.8.1 has Incorrect Access Control. A scenario wa ...	CVSS3: 9.8	0% Низкий	почти 6 лет назад
CVE-2020-10073 GitLab EE 12.4.2 through 12.8.1 allows Denial of Service. It was internally discovered that a potential denial of service involving permissions checks could impact a project home page.	CVSS3: 7.5	0% Низкий	почти 6 лет назад
CVE-2020-10073 GitLab EE 12.4.2 through 12.8.1 allows Denial of Service. It was inter ...	CVSS3: 7.5	0% Низкий	почти 6 лет назад
CVE-2019-9890 An issue was discovered in GitLab Community and Enterprise Edition 10.x and 11.x before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. It has Insecure Permissions.	CVSS3: 9.1	0% Низкий	почти 7 лет назад
CVE-2019-9890 An issue was discovered in GitLab Community and Enterprise Edition 10.x and 11.x before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. It has Insecure Permissions.	CVSS3: 9.1	0% Низкий	почти 7 лет назад
CVE-2019-9890 An issue was discovered in GitLab Community and Enterprise Edition 10. ...	CVSS3: 9.1	0% Низкий	почти 7 лет назад
CVE-2019-9866 An issue was discovered in GitLab Community and Enterprise Edition 11.x before 11.7.7 and 11.8.x before 11.8.3. It allows Information Disclosure.	CVSS3: 6.5	0% Низкий	больше 6 лет назад

Уязвимостей на страницу