Shimon03

2 exploits Active since Jan 2024

CVE-2023-7028 NOMISEC CRITICAL WORKING POC

GitLab Password Reset Account Takeover

An issue has been discovered in GitLab CE/EE affecting all versions from 16.1 prior to 16.1.6, 16.2 prior to 16.2.9, 16.3 prior to 16.3.7, 16.4 prior to 16.4.5, 16.5 prior to 16.5.6, 16.6 prior to 16.6.4, and 16.7 prior to 16.7.2 in which user account password reset emails could be delivered to an unverified email address.

CVSS 10.0

View Code

CVE-2024-27198 NOMISEC CRITICAL WRITEUP

TeamCity < 2023.11.4 - Authentication Bypass

In JetBrains TeamCity before 2023.11.4 authentication bypass allowing to perform admin actions was possible

CVSS 9.8

View Code