Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / gitlab

gitlab

1,383 tracked vulnerabilities.

CVE-2025-9957 LOW

Incorrect Authorization in GitLab

CVE-2025-6016 MEDIUM

Allocation of Resources Without Limits or Throttling in GitLab

CVE-2025-3922 MEDIUM

Allocation of Resources Without Limits or Throttling in GitLab

CVE-2025-0186 MEDIUM

Allocation of Resources Without Limits or Throttling in GitLab

CVE-2025-9484 MEDIUM

Missing Authorization in GitLab

CVE-2025-12664 HIGH

Improper Validation of Specified Quantity in Input in GitLab

CVE-2025-14595 MEDIUM

Missing Authorization in GitLab

CVE-2025-13436 MEDIUM

Allocation of Resources Without Limits or Throttling in GitLab

CVE-2025-13078 MEDIUM

Improper Validation of Specified Quantity in Input in GitLab

CVE-2025-12555 MEDIUM

GitLab CE/EE 15.1-18.7.5/18.8-18.8.5/18.9-18.9.1 - Info Disclosure

CVE-2025-14513 HIGH

GitLab 16.11-18.7.5, 18.8-18.8.5, 18.9-18.9.1 - DoS via Protected Branches API

CVE-2025-13929 HIGH

GitLab 10.0-18.7.5, 18.8-18.8.5, 18.9-18.9.1 - Unauthenticated Denial of Service via Repository Archive Endpoint

CVE-2025-13690 MEDIUM

GitLab 16.11-18.7.5, 18.8-18.8.5, 18.9-18.9.1 - Authenticated Denial of Service via Webhook Custom Header Input

CVE-2025-12704 LOW

GitLab EE 18.2-18.9.2 - Auth Bypass

CVE-2025-12697 LOW

GitLab 15.5-18.7.5, 18.8-18.8.5, 18.9-18.9.1 - Authenticated Datadog API Credential Exposure

CVE-2025-12576 MEDIUM

GitLab 9.3-18.7.5, 18.8-18.8.5, 18.9-18.9.1 - Authenticated Denial of Service via Webhook Response Handling

CVE-2025-14511 HIGH

GitLab 12.2-18.7.4, 18.8-18.8.4, 18.9-18.9.0 - Unauthenticated Denial of Service via Container Registry Event Endpoint

CVE-2025-3525 MEDIUM

GitLab 9.0-18.7.4, 18.8-18.8.4, 18.9-18.9.0 - Authenticated Denial of Service via CI Trigger API

CVE-2025-14103 MEDIUM

GitLab CE/EE 17.7-18.9 - Privilege Escalation

CVE-2025-8099 HIGH

GitLab 10.8-18.6.5, 18.7-18.7.3, 18.8-18.8.3 - Unauthenticated Denial of Service via GraphQL Query Flooding

CVE-2025-7659 HIGH

GitLab CE/EE <18.6.6-18.8.4 - Info Disclosure

CVE-2025-14594 LOW

GitLab CE/EE <18.6.6-18.8.4 - Info Disclosure

CVE-2025-14592 LOW

GitLab CE/EE <18.6.6-18.8.4 - Privilege Escalation

CVE-2025-14560 HIGH

GitLab CE/EE <18.6.6-18.8.4 - Privilege Escalation

CVE-2025-12575 MEDIUM

GitLab 18.0-18.6.5, 18.7-18.7.3, 18.8-18.8.3 - Authenticated Server-Side Request Forgery

Previous Page 4 of 56 Next

Products

gitlab 1,368 GitLab 108 gitlab-shell 5 dynamic_application_security_testing_analyzer 4 runner 3 gitlab-vscode-extension 2 GitLab AI Gateway 1 dast_api_scanner 1 gitaly 1 gitlab_runner 1 language_server 1 omnibus 1

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy