Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / gitlab

gitlab

1,383 tracked vulnerabilities.

CVE-2021-32823 LOW

bindata < 2.4.10 - Denial of Service via Slow Bit Class Creation

CVE-2021-22181 HIGH

GitLab 11.8.0-13.10.4 - Denial of Service via Recursive Pipeline Relationship

CVE-2021-22175 MEDIUM KEVNUCLEI

GitLab 10.5.0-13.6.6 - Unauthenticated Server-Side Request Forgery via Webhook Internal Network Requests

CVE-2021-22220 MEDIUM

GitLab 13.10-13.10.5 - Stored Cross-Site Scripting in Blob Viewer of Notebooks

CVE-2021-22216 MEDIUM

GitLab < 13.10.5 - Denial of Service via Long Issue or Merge Request Description

CVE-2021-22221 MEDIUM

GitLab 12.9.0-13.10.4, 13.11.0-13.11.4, 13.12.0-13.12.1 - Insufficient Session Expiration

CVE-2021-22219 MEDIUM

GitLab 9.5.0-13.10.4 13.11.0-13.11.4 13.12.0-13.12.1 - Sensitive Information Exposure in Log Files

CVE-2021-22217 MEDIUM

GitLab < 13.10.5 - Denial of Service via Specially Crafted Issue or Merge Request

CVE-2021-22213 HIGH

GitLab 7.10.0-13.10.4 - Cross-Site Leak via OAuth Flow

CVE-2021-22218 LOW

GitLab 12.8-13.10.4, 13.11-13.11.4, 13.12-13.12.1 - Improper Certificate Validation

CVE-2021-22215 HIGH

GitLab 13.11.0-13.11.4 - Information Disclosure via On-Call Rotation Data

CVE-2021-22214 MEDIUM NUCLEI

GitLab 10.5-13.10.4 - Unauthenticated Server-Side Request Forgery via Webhook Internal Network Requests

CVE-2021-22210 MEDIUM

GitLab 13.2.0-13.9.7 - Allocation of Resources Without Limits or Throttling via API Branch Query

CVE-2021-22209 HIGH

GitLab 13.8.0-13.9.6 - Incorrect Authorization via GraphQL Mutation

CVE-2021-22208 MEDIUM

GitLab 13.5.0-13.9.7 - Unauthenticated Issue Timestamp Manipulation

CVE-2021-22206 MEDIUM

GitLab 11.6.0-13.9.6 - Cleartext Storage of Sensitive Information in Pull Mirror Credentials

CVE-2021-22211 LOW

GitLab 13.7.0-13.9.6 - Incorrect Authorization via Dependency Proxy

CVE-2021-22205 CRITICAL KEVNUCLEI

GitLab 11.9.0-13.8.7 - Unauthenticated Remote Code Execution via ExifTool Image Parsing

CVE-2021-22199 LOW

GitLab 12.9-13.8.6 - Stored Cross-Site Scripting via Scoped Labels

CVE-2021-22190 HIGH

GitLab 13.7.0-13.7.8 - Path Traversal via GitLab Workhorse

CVE-2021-22203 HIGH

GitLab CE/EE <13.8.7/<13.9.5/<13.10.1 - Info Disclosure

CVE-2021-22202 LOW

GitLab < 13.10.0 - Cross-Site Request Forgery via System Hooks API

CVE-2021-22201 CRITICAL

GitLab CE/EE <13.9 - Info Disclosure

CVE-2021-22200 MEDIUM

GitLab CE/EE <12.6 - Info Disclosure

CVE-2021-22198 MEDIUM

GitLab CE/EE >=13.8 - Privilege Escalation

Previous Page 35 of 56 Next

Products

gitlab 1,368 GitLab 110 gitlab-shell 5 dynamic_application_security_testing_analyzer 4 runner 3 gitlab-vscode-extension 2 GitLab AI Gateway 1 dast_api_scanner 1 gitaly 1 gitlab_runner 1 language_server 1 omnibus 1

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy