Writeup Exploits

60,661 exploits tracked across all sources.

Sort: Activity Stars
CVE-2018-18648 WRITEUP HIGH
GitLab 11.2.0-11.2.6, 11.3.0-11.3.7, 11.4.0-11.4.2 - Information Exposure Through Error Message
An issue was discovered in GitLab Community and Enterprise Edition before 11.2.7, 11.3.x before 11.3.8, and 11.4.x before 11.4.3. It has Information Exposure Through an Error Message.
CVSS 7.5
CVE-2018-18646 WRITEUP HIGH
GitLab 5.3-11.2.6, 11.3.x < 11.3.8, 11.4.x < 11.4.3 - Server-Side Request Forgery
An issue was discovered in GitLab Community and Enterprise Edition before 11.2.7, 11.3.x before 11.3.8, and 11.4.x before 11.4.3. It allows SSRF.
CVSS 8.8
CVE-2018-18645 WRITEUP MEDIUM
GitLab < 11.2.7, 11.3.x < 11.3.8, 11.4.x < 11.4.3 - Information Exposure via Unsubscribe Links in Email Replies
An issue was discovered in GitLab Community and Enterprise Edition before 11.2.7, 11.3.x before 11.3.8, and 11.4.x before 11.4.3. It allows for Information Exposure via unsubscribe links in email replies.
CVSS 4.3
CVE-2018-18643 WRITEUP MEDIUM
GitLab 11.2-11.4.6 - Stored Cross-Site Scripting
GitLab CE & EE 11.2 and later and before 11.5.0-rc12, 11.4.6, and 11.3.10 have Persistent XSS.
CVSS 6.1
CVE-2018-18642 WRITEUP MEDIUM
GitLab 10.4.0-11.2.6, 11.3.0-11.3.7, 11.4.0-11.4.2 - Cross-Site Scripting
An issue was discovered in GitLab Community and Enterprise Edition before 11.2.7, 11.3.x before 11.3.8, and 11.4.x before 11.4.3. It has XSS.
CVSS 6.1
CVE-2018-18641 WRITEUP CRITICAL
GitLab 8.10.0-11.2.6 11.3.0-11.3.7 11.4.0-11.4.2 - Cleartext Storage of Sensitive Information
An issue was discovered in GitLab Community and Enterprise Edition before 11.2.7, 11.3.x before 11.3.8, and 11.4.x before 11.4.3. It has Cleartext Storage of Sensitive Information.
CVSS 9.8
CVE-2018-18640 WRITEUP MEDIUM
GitLab < 11.2.7, 11.3.x < 11.3.8, 11.4.x < 11.4.3 - Information Exposure Through Browser Caching
An issue was discovered in GitLab Community and Enterprise Edition before 11.2.7, 11.3.x before 11.3.8, and 11.4.x before 11.4.3. It has Information Exposure Through Browser Caching.
CVSS 6.5
CVE-2018-17976 WRITEUP MEDIUM
GitLab 11.0.0-11.1.8 - Information Exposure via Epic Change Descriptions
An issue was discovered in GitLab Community Edition 11.x before 11.1.8, 11.2.x before 11.2.5, and 11.3.x before 11.3.2. There is Information Exposure via Epic change descriptions.
CVSS 6.5
CVE-2018-17975 WRITEUP MEDIUM
GitLab 11.x < 11.1.8, 11.2.x < 11.2.5, 11.3.x < 11.3.2 - Information Exposure via GFM Markdown API
An issue was discovered in GitLab Community Edition 11.x before 11.1.8, 11.2.x before 11.2.5, and 11.3.x before 11.3.2. There is Information Exposure via the GFM markdown API.
CVSS 5.3
CVE-2018-17939 WRITEUP HIGH
GitLab 11.1.x-11.1.8 11.2.x-11.2.5 11.3.x-11.3.2 - Information Exposure via Merge Request JSON Endpoint
An issue was discovered in GitLab Community and Enterprise Edition 11.1.x before 11.1.8, 11.2.x before 11.2.5, and 11.3.x before 11.3.2. There is Information Exposure via the merge request JSON endpoint.
CVSS 7.5
CVE-2018-16050 WRITEUP MEDIUM
GitLab 11.1.x < 11.1.5 and 11.2.x < 11.2.2 - Stored Cross-Site Scripting in Merge Request Changes View
An issue was discovered in GitLab Community and Enterprise Edition 11.1.x before 11.1.5 and 11.2.x before 11.2.2. There is Persistent XSS in the Merge Request Changes View.
CVSS 6.1
CVE-2018-16049 WRITEUP CRITICAL
GitLab 8.10.0-11.0.5, 11.1.0-11.1.4, 11.2.0-11.2.1 - Sensitive Data Disclosure in Sidekiq Logs
An issue was discovered in GitLab Community and Enterprise Edition before 11.0.6, 11.1.x before 11.1.5, and 11.2.x before 11.2.2. There is Sensitive Data Disclosure in Sidekiq Logs through an Error Message.
CVSS 9.8
CVE-2018-16049 WRITEUP CRITICAL
GitLab 8.10.0-11.0.5, 11.1.0-11.1.4, 11.2.0-11.2.1 - Sensitive Data Disclosure in Sidekiq Logs
An issue was discovered in GitLab Community and Enterprise Edition before 11.0.6, 11.1.x before 11.1.5, and 11.2.x before 11.2.2. There is Sensitive Data Disclosure in Sidekiq Logs through an Error Message.
CVSS 9.8
CVE-2018-16048 WRITEUP MEDIUM
GitLab 8.10.0-11.0.5 11.1.0-11.1.4 11.2.0-11.2.1 - Missing Authorization for API Repository Storage
An issue was discovered in GitLab Community and Enterprise Edition before 11.0.6, 11.1.x before 11.1.5, and 11.2.x before 11.2.2. There is Missing Authorization Control for API Repository Storage.
CVSS 6.5
CVE-2018-14606 WRITEUP MEDIUM
GitLab <10.8.7, <11.0.5, <11.1.2 - XSS
An issue was discovered in GitLab Community and Enterprise Edition before 10.8.7, 11.0.x before 11.0.5, and 11.1.x before 11.1.2. XSS can occur via a Milestone name during a promotion.
CVSS 5.4
CVE-2018-14605 WRITEUP MEDIUM
GitLab <10.8.7, <11.0.5, <11.1.2 - XSS
An issue was discovered in GitLab Community and Enterprise Edition before 10.8.7, 11.0.x before 11.0.5, and 11.1.x before 11.1.2. XSS can occur in the branch name during a Web IDE file commit.
CVSS 5.4
CVE-2018-14601 WRITEUP HIGH
GitLab 11.1.x < 11.1.2 - Denial of Service via Markdown Rendering
An issue was discovered in GitLab Community and Enterprise Edition 11.1.x before 11.1.2. A Denial of Service can occur because Markdown rendering times are slow.
CVSS 7.5
CVE-2018-14364 WRITEUP CRITICAL
GitLab <10.7.7, <10.8.6, <11.0.4 - Path Traversal
GitLab Community and Enterprise Edition before 10.7.7, 10.8.x before 10.8.6, and 11.x before 11.0.4 allows Directory Traversal with write access and resultant remote code execution via the GitLab projects import component.
CVSS 9.8
CVE-2018-12607 WRITEUP MEDIUM
GitLab CE/EE <10.7.6, <10.8.5, <11.0.1 - XSS
An issue was discovered in GitLab Community Edition and Enterprise Edition before 10.7.6, 10.8.x before 10.8.5, and 11.x before 11.0.1. The charts feature contained a persistent XSS issue due to a lack of output encoding.
CVSS 5.4
CVE-2018-12606 WRITEUP MEDIUM
GitLab CE/EE <10.7.6, <10.8.5, <11.0.1 - XSS
An issue was discovered in GitLab Community Edition and Enterprise Edition before 10.7.6, 10.8.x before 10.8.5, and 11.x before 11.0.1. The wiki contains a persistent XSS issue due to a lack of output encoding affecting a specific markdown feature.
CVSS 5.4
CVE-2018-12605 WRITEUP MEDIUM
GitLab 10.7.x < 10.7.6 - Cross-Site Scripting via url_for Arbitrary Protocol
An issue was discovered in GitLab Community Edition and Enterprise Edition 10.7.x before 10.7.6. The usage of 'url_for' contained a XSS issue due to it allowing arbitrary protocols as a parameter.
CVSS 5.4
CVE-2017-8778 WRITEUP MEDIUM
GitLab < 8.14.9, 8.15.x < 8.15.6, 8.16.x < 8.16.5 - Stored Cross-Site Scripting via SVG Attachment or Avatar
GitLab before 8.14.9, 8.15.x before 8.15.6, and 8.16.x before 8.16.5 has XSS via a SCRIPT element in an issue attachment or avatar that is an SVG document.
CVSS 6.1
CVE-2017-17716 WRITEUP MEDIUM
GitLab 9.4.x - Improper Certificate Validation in LDAP SSL Verification
GitLab 9.4.x before 9.4.2 does not support LDAP SSL certificate verification, but a verify_certificates LDAP option was mentioned in the 9.4 release announcement. This issue occurred because code was not merged. This is related to use of the omniauth-ldap library and the gitlab_omniauth-ldap gem.
CVSS 5.9
CVE-2017-0927 WRITEUP MEDIUM
GitLab 8.16.0-9.5.9 - Unauthenticated Improper Authorization in Deployment Keys
Gitlab Community Edition version 10.3 is vulnerable to an improper authorization issue in the deployment keys component resulting in unauthorized use of deployment keys by guest users.
CVSS 6.5
CVE-2017-0926 WRITEUP HIGH
GitLab 8.8.0-9.5.9 - Unauthenticated Unauthorized User Login via OAuth Sign-In
Gitlab Community Edition version 10.3 is vulnerable to an improper authorization issue in the Oauth sign-in component resulting in unauthorized user login.
CVSS 8.8
By Source
All 60,661 Writeup 60,661 Exploitdb 50,056 Nomisec 22,007 Metasploit 3,233 Github 3,032 Vulncheck_xdb 909 Inthewild 514 Gitlab 461 Gitee 415 Patchapalooza 312
By Language
text 31,369 python 6,264 ruby 5,923 c 3,601 perl 2,850 html 2,059 php 1,327 bash 460 java 364 c++ 253 javascript 221 shell 106 go 65 postscript 25 xml 24