hackerone_a0xnirudh

3 exploits Active since Jul 2022
CVE-2022-2229 GITLAB HIGH STUB
GitLab CE/EE <14.10.5-15.0.4-15.1.1 - Info Disclosure
An improper authorization issue in GitLab CE/EE affecting all versions from 13.7 prior to 14.10.5, 15.0 prior to 15.0.4, and 15.1 prior to 15.1.1 allows an attacker to extract the value of an unprotected variable they know the name of in public projects or private projects they're a member of.
CVSS 7.5
CVE-2023-6051 GITLAB MEDIUM TROJAN
GitLab CE/EE <16.4.4, <16.5.4, <16.6.2 - Info Disclosure
An issue has been discovered in GitLab CE/EE affecting all versions before 16.4.4, all versions starting from 16.5 before 16.5.4, all versions starting from 16.6 before 16.6.2. File integrity may be compromised when source code or installation packages are pulled from a specific tag.
CVSS 5.7
CVE-2024-9387 GITLAB MEDIUM STUB
Gitlab < 17.4.6 - Open Redirect
An issue was discovered in GitLab CE/EE affecting all versions from 11.8 before 17.4.6, 17.5 before 17.5.4, and 17.6 before 17.6.2. An attacker could potentially perform an open redirect against a given releases API endpoint.
CVSS 6.4