Количество 5 531
Количество 5 531
CVE-2020-10083
GitLab 12.7 through 12.8.1 has Insecure Permissions. Under certain conditions involving groups, project authorization changes were not being applied.
CVE-2020-10083
GitLab 12.7 through 12.8.1 has Insecure Permissions. Under certain conditions involving groups, project authorization changes were not being applied.
CVE-2020-10083
GitLab 12.7 through 12.8.1 has Insecure Permissions. Under certain con ...
CVE-2020-10082
GitLab 12.2 through 12.8.1 allows Denial of Service. A denial of service vulnerability impacting the designs for public issues was discovered.
CVE-2020-10082
GitLab 12.2 through 12.8.1 allows Denial of Service. A denial of service vulnerability impacting the designs for public issues was discovered.
CVE-2020-10082
GitLab 12.2 through 12.8.1 allows Denial of Service. A denial of servi ...
CVE-2020-10081
GitLab before 12.8.2 has Incorrect Access Control. It was internally discovered that the LFS import process could potentially be used to incorrectly access LFS objects not owned by the user.
CVE-2020-10081
GitLab before 12.8.2 has Incorrect Access Control. It was internally discovered that the LFS import process could potentially be used to incorrectly access LFS objects not owned by the user.
CVE-2020-10081
GitLab before 12.8.2 has Incorrect Access Control. It was internally d ...
CVE-2020-10080
GitLab 8.3 through 12.8.1 allows Information Disclosure. It was possible for certain non-members to access the Contribution Analytics page of a private group.
CVE-2020-10080
GitLab 8.3 through 12.8.1 allows Information Disclosure. It was possible for certain non-members to access the Contribution Analytics page of a private group.
CVE-2020-10080
GitLab 8.3 through 12.8.1 allows Information Disclosure. It was possib ...
CVE-2020-10079
GitLab 7.10 through 12.8.1 has Incorrect Access Control. Under certain conditions where users should have been required to configure two-factor authentication, it was not being required.
CVE-2020-10079
GitLab 7.10 through 12.8.1 has Incorrect Access Control. Under certain conditions where users should have been required to configure two-factor authentication, it was not being required.
CVE-2020-10079
GitLab 7.10 through 12.8.1 has Incorrect Access Control. Under certain ...
CVE-2020-10078
GitLab 12.1 through 12.8.1 allows XSS. The merge request submission form was determined to have a stored cross-site scripting vulnerability.
CVE-2020-10078
GitLab 12.1 through 12.8.1 allows XSS. The merge request submission form was determined to have a stored cross-site scripting vulnerability.
CVE-2020-10078
GitLab 12.1 through 12.8.1 allows XSS. The merge request submission fo ...
CVE-2020-10077
GitLab EE 3.0 through 12.8.1 allows SSRF. An internal investigation revealed that a particular deprecated service was creating a server side request forgery risk.
CVE-2020-10077
GitLab EE 3.0 through 12.8.1 allows SSRF. An internal investigation re ...
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2020-10083 GitLab 12.7 through 12.8.1 has Insecure Permissions. Under certain conditions involving groups, project authorization changes were not being applied. | CVSS3: 9.1 | 0% Низкий | около 6 лет назад |
 | CVE-2020-10083 GitLab 12.7 through 12.8.1 has Insecure Permissions. Under certain conditions involving groups, project authorization changes were not being applied. | CVSS3: 9.1 | 0% Низкий | около 6 лет назад |
| CVE-2020-10083 GitLab 12.7 through 12.8.1 has Insecure Permissions. Under certain con ... | CVSS3: 9.1 | 0% Низкий | около 6 лет назад |
| CVE-2020-10082 GitLab 12.2 through 12.8.1 allows Denial of Service. A denial of service vulnerability impacting the designs for public issues was discovered. | CVSS3: 5.3 | 0% Низкий | около 6 лет назад |
| CVE-2020-10082 GitLab 12.2 through 12.8.1 allows Denial of Service. A denial of service vulnerability impacting the designs for public issues was discovered. | CVSS3: 5.3 | 0% Низкий | около 6 лет назад |
| CVE-2020-10082 GitLab 12.2 through 12.8.1 allows Denial of Service. A denial of servi ... | CVSS3: 5.3 | 0% Низкий | около 6 лет назад |
| CVE-2020-10081 GitLab before 12.8.2 has Incorrect Access Control. It was internally discovered that the LFS import process could potentially be used to incorrectly access LFS objects not owned by the user. | CVSS3: 6.5 | 0% Низкий | около 6 лет назад |
| CVE-2020-10081 GitLab before 12.8.2 has Incorrect Access Control. It was internally discovered that the LFS import process could potentially be used to incorrectly access LFS objects not owned by the user. | CVSS3: 6.5 | 0% Низкий | около 6 лет назад |
| CVE-2020-10081 GitLab before 12.8.2 has Incorrect Access Control. It was internally d ... | CVSS3: 6.5 | 0% Низкий | около 6 лет назад |
| CVE-2020-10080 GitLab 8.3 through 12.8.1 allows Information Disclosure. It was possible for certain non-members to access the Contribution Analytics page of a private group. | CVSS3: 5.3 | 0% Низкий | около 6 лет назад |
| CVE-2020-10080 GitLab 8.3 through 12.8.1 allows Information Disclosure. It was possible for certain non-members to access the Contribution Analytics page of a private group. | CVSS3: 5.3 | 0% Низкий | около 6 лет назад |
| CVE-2020-10080 GitLab 8.3 through 12.8.1 allows Information Disclosure. It was possib ... | CVSS3: 5.3 | 0% Низкий | около 6 лет назад |
| CVE-2020-10079 GitLab 7.10 through 12.8.1 has Incorrect Access Control. Under certain conditions where users should have been required to configure two-factor authentication, it was not being required. | CVSS3: 5.3 | 0% Низкий | около 6 лет назад |
| CVE-2020-10079 GitLab 7.10 through 12.8.1 has Incorrect Access Control. Under certain conditions where users should have been required to configure two-factor authentication, it was not being required. | CVSS3: 5.3 | 0% Низкий | около 6 лет назад |
| CVE-2020-10079 GitLab 7.10 through 12.8.1 has Incorrect Access Control. Under certain ... | CVSS3: 5.3 | 0% Низкий | около 6 лет назад |
| CVE-2020-10078 GitLab 12.1 through 12.8.1 allows XSS. The merge request submission form was determined to have a stored cross-site scripting vulnerability. | CVSS3: 6.1 | 0% Низкий | около 6 лет назад |
| CVE-2020-10078 GitLab 12.1 through 12.8.1 allows XSS. The merge request submission form was determined to have a stored cross-site scripting vulnerability. | CVSS3: 6.1 | 0% Низкий | около 6 лет назад |
| CVE-2020-10078 GitLab 12.1 through 12.8.1 allows XSS. The merge request submission fo ... | CVSS3: 6.1 | 0% Низкий | около 6 лет назад |
| CVE-2020-10077 GitLab EE 3.0 through 12.8.1 allows SSRF. An internal investigation revealed that a particular deprecated service was creating a server side request forgery risk. | CVSS3: 9.8 | 0% Низкий | около 6 лет назад |
| CVE-2020-10077 GitLab EE 3.0 through 12.8.1 allows SSRF. An internal investigation re ... | CVSS3: 9.8 | 0% Низкий | около 6 лет назад |
Уязвимостей на страницу