Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / gitlab

gitlab

1,383 tracked vulnerabilities.

CVE-2022-2992 CRITICAL

GitLab GitHub Repo Import Deserialization RCE

CVE-2022-2931 HIGH

GitLab < 15.1.6, 15.2-15.2.4, 15.3-15.3.2 - Denial of Service via Malformed Issue Description

CVE-2022-2908 MEDIUM

GitLab 10.7-15.1.4, 15.2-15.2.2, 15.3 - Denial of Service via Commit Message Field

CVE-2022-2884 CRITICAL

GitLab CE/EE <15.1.5-15.3.1 - Authenticated RCE

CVE-2022-2865 HIGH

GitLab CE/EE <15.1.6, <15.2.4, <15.3.2 - XSS

CVE-2022-2630 MEDIUM

GitLab CE/EE <15.2.4-15.3.2 - Info Disclosure

CVE-2022-2592 MEDIUM

GitLab < 15.1.6, 15.2 < 15.2.4, 15.3 < 15.3.2 - Authenticated Denial of Service via Snippet Description Length

CVE-2022-2533 MEDIUM

GitLab <15.1.6-15.3.2 - Auth Bypass

CVE-2022-2527 HIGH

GitLab CE/EE <15.1.6-15.3.2 - Authenticated XSS

CVE-2022-2455 MEDIUM

GitLab 10.0.0-15.1.5, 15.2.0-15.2.3, 15.3.0-15.3.1 - Authenticated Resource Exhaustion via Malicious Project Import

CVE-2022-2428 MEDIUM

GitLab < 15.1.6, 15.2-15.2.4, 15.3-15.3.2 - Server-Side Request Forgery via Jupyter Notebook Viewer

CVE-2022-2539 MEDIUM

GitLab CE/EE <15.0.5-15.2.1 - Info Disclosure

CVE-2022-2534 LOW

GitLab CE/EE <15.0.5-15.2.1 - Info Disclosure

CVE-2022-2531 MEDIUM

GitLab EE <15.0.5-15.2.1 - Path Traversal

CVE-2022-2512 MEDIUM

GitLab CE/EE <15.0.5-15.2.1 - Info Disclosure

CVE-2022-2501 MEDIUM

GitLab EE <15.0.5-15.2.1 - Auth Bypass

CVE-2022-2500 MEDIUM

GitLab < 15.0.5, 15.1 < 15.1.4, 15.2 < 15.2.1 - Stored Cross-Site Scripting in Job Error Messages

CVE-2022-2499 LOW

GitLab 13.10.0-15.0.4, 15.1.0-15.1.3, 15.2.0 - Authorization Bypass via Jira Integration

CVE-2022-2498 MEDIUM

GitLab 12.8-15.0.4, 15.1-15.1.3, 15.2 - Improper Privilege Management in Pipeline Subscriptions

CVE-2022-2497 HIGH

GitLab CE/EE <15.0.5, <15.1.4, <15.2.1 - Info Disclosure

CVE-2022-2459 LOW

GitLab < 15.0.5, 15.1 < 15.1.4, 15.2 < 15.2.1 - Missing Authorization for Email Invited Members

CVE-2022-2456 MEDIUM

GitLab CE/EE <15.0.5, <15.1.4, <15.2.1 - Info Disclosure

CVE-2022-2417 MEDIUM

GitLab 12.10-15.0.4, 15.1-15.1.3, 15.2-15.2.0 - Authenticated Supply Chain Attack via Branch Name Spoofing

CVE-2022-2326 MEDIUM

GitLab CE/EE <15.0.5, <15.1.4, <15.2.1 - Info Disclosure

CVE-2022-2307 LOW

GitLab CE/EE <15.0.5-15.2.1 - Info Disclosure

Previous Page 26 of 56 Next

Products

gitlab 1,368 GitLab 108 gitlab-shell 5 dynamic_application_security_testing_analyzer 4 runner 3 gitlab-vscode-extension 2 GitLab AI Gateway 1 dast_api_scanner 1 gitaly 1 gitlab_runner 1 language_server 1 omnibus 1

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy