Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / gitlab

gitlab

1,383 tracked vulnerabilities.

CVE-2021-22197 LOW

GitLab 10.6.0-13.8.6 - Authenticated Denial of Service via Merge Request Infinite Loop

CVE-2021-22196 MEDIUM

GitLab 13.4.0-13.8.6 - Stored Cross-Site Scripting via Merge Request Branch Name

CVE-2021-22195 HIGH

GitLab VSCode Extension < 3.15.0 - Client-Side Code Execution via Uncontrolled Search Path Element

CVE-2021-22177 MEDIUM

GitLab 12.6.0-13.6.6 - Denial of Service via gitlab-shell Command

CVE-2021-22194 MEDIUM

GitLab - Cleartext Storage of Sensitive Information in Redis

CVE-2021-22184 MEDIUM

GitLab 12.8.0-13.6.5 - Sensitive Information Disclosure in Server Logs

CVE-2021-22180 MEDIUM

GitLab 13.4-13.6.7 - Unauthenticated Direct Request Access to Analytic Pages

CVE-2021-22172 MEDIUM

GitLab 12.8.0-13.6.5 - Unauthenticated Exposure of Sensitive Tag Data via Releases Page

CVE-2021-22169 MEDIUM

GitLab 13.4.0-13.5.5 - Internal IP Address Exposure via Error Message

CVE-2021-22193 LOW

GitLab 7.1.0-13.6.5 - Information Disclosure via Private Project Name Validation

CVE-2021-22192 CRITICAL

GitLab CE/EE <13.2 - Authenticated RCE

CVE-2021-22186 MEDIUM

GitLab 9.4.0-13.7.7 - Incorrect Authorization in Group CI/CD Variables

CVE-2021-22185 MEDIUM

GitLab 13.8.0-13.8.4 - Stored Cross-Site Scripting in Wikis via Crafted Commit

CVE-2021-22179 MEDIUM

GitLab 12.2.0-13.6.5 - Server-Side Request Forgery via Outbound Requests

CVE-2021-22178 MEDIUM

GitLab 13.2.0-13.6.6 - Server-Side Request Forgery via Prometheus Integration

CVE-2021-22176 MEDIUM

GitLab 3.0.1-13.6.7 - Incorrect Authorization for Demoted Project Members

CVE-2021-22189 MEDIUM

GitLab < 13.6.7 - Improper Certificate Validation for Fortinet OTP

CVE-2021-22183 MEDIUM

GitLab 11.8-13.6.5 - Stored Cross-Site Scripting in Epics Page

CVE-2021-22188 MEDIUM

GitLab 13.0.0-13.6.6 - Unauthenticated Confidential Issue Title Exposure via Branch Logs

CVE-2021-22182 LOW

GitLab 13.7.0-13.7.5 - Stored Cross-Site Scripting in Merge Request

CVE-2021-22187 MEDIUM

GitLab < 13.6.7 - Uncontrolled Resource Consumption via Deleted Project Job Persistence

CVE-2021-22171 HIGH

GitLab 11.5.0-13.5.5 - API Token Theft via Malicious Link

CVE-2021-22168 MEDIUM

GitLab 12.8.0-13.5.5 - Regular Expression Denial of Service in NuGet API

CVE-2021-22167 MEDIUM

GitLab 12.1.0-13.5.5 - Unauthenticated Temporary Private Repository Access via Incorrect Headers

CVE-2021-22166 MEDIUM

GitLab 13.7.0-13.7.1 - Denial of Service via Malformed HTTP Method

Previous Page 36 of 56 Next

Products

gitlab 1,368 GitLab 110 gitlab-shell 5 dynamic_application_security_testing_analyzer 4 runner 3 gitlab-vscode-extension 2 GitLab AI Gateway 1 dast_api_scanner 1 gitaly 1 gitlab_runner 1 language_server 1 omnibus 1

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy