exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 5

CVE-2024-1211

около 1 года назад

An issue has been discovered in GitLab CE/EE affecting all versions starting from 10.6 prior to 16.9.7, starting from 16.10 prior to 16.10.5, and starting from 16.11 prior to 16.11.2 in which cross-site request forgery may have been possible on GitLab instances configured to use JWT as an OmniAuth provider.

CVSS3: 6.4

EPSS: Низкий

CVE-2024-1211

около 1 года назад

An issue has been discovered in GitLab CE/EE affecting all versions starting from 10.6 prior to 16.9.7, starting from 16.10 prior to 16.10.5, and starting from 16.11 prior to 16.11.2 in which cross-site request forgery may have been possible on GitLab instances configured to use JWT as an OmniAuth provider.

CVSS3: 6.4

EPSS: Низкий

CVE-2024-1211

около 1 года назад

An issue has been discovered in GitLab CE/EE affecting all versions st ...

CVSS3: 6.4

EPSS: Низкий

GHSA-5xrw-g5h5-j2r6

около 1 года назад

An issue has been discovered in GitLab CE/EE affecting all versions starting from 10.6 prior to 16.9.7, starting from 16.10 prior to 16.10.5, and starting from 16.11 prior to 16.11.2 in which cross-site request forgery may have been possible on GitLab instances configured to use JWT as an OmniAuth provider.

CVSS3: 6.4

EPSS: Низкий

BDU:2025-01577

около 2 лет назад

Уязвимость конфигурации JWT OmniAuth provider программной платформы на базе git для совместной работы над кодом GitLab, позволяющая нарушителю провести атаку межсайтового скриптинга (XSS)

CVSS3: 6.4

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2024-1211 An issue has been discovered in GitLab CE/EE affecting all versions starting from 10.6 prior to 16.9.7, starting from 16.10 prior to 16.10.5, and starting from 16.11 prior to 16.11.2 in which cross-site request forgery may have been possible on GitLab instances configured to use JWT as an OmniAuth provider.	CVSS3: 6.4	0% Низкий	около 1 года назад
CVE-2024-1211 An issue has been discovered in GitLab CE/EE affecting all versions starting from 10.6 prior to 16.9.7, starting from 16.10 prior to 16.10.5, and starting from 16.11 prior to 16.11.2 in which cross-site request forgery may have been possible on GitLab instances configured to use JWT as an OmniAuth provider.	CVSS3: 6.4	0% Низкий	около 1 года назад
CVE-2024-1211 An issue has been discovered in GitLab CE/EE affecting all versions st ...	CVSS3: 6.4	0% Низкий	около 1 года назад
GHSA-5xrw-g5h5-j2r6 An issue has been discovered in GitLab CE/EE affecting all versions starting from 10.6 prior to 16.9.7, starting from 16.10 prior to 16.10.5, and starting from 16.11 prior to 16.11.2 in which cross-site request forgery may have been possible on GitLab instances configured to use JWT as an OmniAuth provider.	CVSS3: 6.4	0% Низкий	около 1 года назад
BDU:2025-01577 Уязвимость конфигурации JWT OmniAuth provider программной платформы на базе git для совместной работы над кодом GitLab, позволяющая нарушителю провести атаку межсайтового скриптинга (XSS)	CVSS3: 6.4	0% Низкий	около 2 лет назад

Уязвимостей на страницу