gitlab

1,423 tracked vulnerabilities.

CVE-2020-13305 LOW
GitLab <13.1.10-13.3.4 - Info Disclosure
Sep 14, 2020
CVSS 3.5
EPSS 0.01
CVE-2020-13304 LOW
GitLab <13.1.10-13.3.4 - Privilege Escalation
Sep 14, 2020
CVSS 3.8
EPSS 0.02
CVE-2020-13302 LOW
GitLab <13.1.10-13.3.4 - Privilege Escalation
Sep 14, 2020
CVSS 3.8
EPSS 0.01
CVE-2020-13301 MEDIUM
GitLab < 13.1.10 - Stored Cross-Site Scripting on Standalone Vulnerability Page
Sep 14, 2020
CVSS 5.5
EPSS 0.01
CVE-2020-13298 HIGH
GitLab <13.1.10-13.3.4 - Info Disclosure
Sep 14, 2020
CVSS 7.2
EPSS 0.01
CVE-2020-13297 LOW
GitLab <13.1.10-13.3.4 - Auth Bypass
Sep 14, 2020
CVSS 3.8
EPSS 0.01
CVE-2020-13317 MEDIUM
GitLab <13.1.10-13.3.4 - Privilege Escalation
Sep 14, 2020
CVSS 6.5
EPSS 0.01
CVE-2020-13314 LOW
GitLab < 13.1.10, 13.2.8, 13.3.4 - Cross-Site Scripting via Omniauth Error Messages
Sep 14, 2020
CVSS 3.7
EPSS 0.01
CVE-2020-13313 MEDIUM
GitLab <13.1.10-13.3.4 - Info Disclosure
Sep 14, 2020
CVSS 4.3
EPSS 0.01
CVE-2020-13312 MEDIUM
GitLab <13.1.10-13.3.4 - Auth Bypass
Sep 14, 2020
CVSS 6.5
EPSS 0.01
CVE-2020-13311 MEDIUM
GitLab < 13.1.10, 13.2.8, 13.3.4 - Denial of Service in Wiki Parser
Sep 14, 2020
CVSS 4.3
EPSS 0.01
CVE-2020-13318 MEDIUM
GitLab < 13.0.12, 13.1.10, 13.2.8, 13.3.4 - Cross-Account Assume Role Attack via EKS Integration
Sep 14, 2020
CVSS 6.4
EPSS 0.01
CVE-2020-13316 MEDIUM
GitLab <13.1.10-13.3.4 - Info Disclosure
Sep 14, 2020
CVSS 5.4
EPSS 0.01
CVE-2020-13300 HIGH
GitLab CE/EE <13.3.4 - Info Disclosure
Sep 14, 2020
CVSS 8.0
EPSS 0.01
CVE-2020-13299 HIGH
GitLab <13.1.10-13.3.4 - Info Disclosure
Sep 14, 2020
CVSS 8.1
EPSS 0.01
CVE-2020-13289 MEDIUM
GitLab <13.1.10-13.3.4 - Info Disclosure
Sep 14, 2020
CVSS 5.4
EPSS 0.01
CVE-2020-13287 MEDIUM
GitLab <13.1.10-13.3.4 - Info Disclosure
Sep 14, 2020
CVSS 4.3
EPSS 0.01
CVE-2020-13284 MEDIUM
GitLab <13.1.10-13.3.4 - Info Disclosure
Sep 14, 2020
CVSS 6.5
EPSS 0.01
CVE-2020-13286 MEDIUM
GitLab 12.7.0-13.0.11 - Server-Side Request Forgery via Git Configuration Settings
Aug 13, 2020
CVSS 6.4
EPSS 0.01
CVE-2020-13281 MEDIUM
GitLab 8.9.0-13.0.11 - Denial of Service via Project Import Feature
Aug 13, 2020
CVSS 6.5
EPSS 0.01
CVE-2020-13285 HIGH
GitLab 12.9.0-13.0.11 - Cross-Site Scripting in Issue Reference Tooltip
Aug 13, 2020
CVSS 7.3
EPSS 0.01
CVE-2020-13283 HIGH
GitLab 10.8.0-13.0.11 - Cross-Site Scripting via Milestone Title
Aug 13, 2020
CVSS 7.3
EPSS 0.01
CVE-2020-13282 LOW
GitLab <13.0.12-13.2.3 - Privilege Escalation
Aug 13, 2020
CVSS 3.1
EPSS 0.01
CVE-2020-13280 MEDIUM
GitLab <13.0.12-13.2.3 - Memory Corruption
Aug 13, 2020
CVSS 6.5
EPSS 0.01
CVE-2020-13291 HIGH
GitLab 13.2.0-13.2.2 - Unauthenticated Excessive Privilege Assignment via Project Sharing
Aug 12, 2020
CVSS 8.1
EPSS 0.01