gitlab
1,383 tracked vulnerabilities.
CVE-2020-10535
MEDIUM
GitLab 12.8.0-12.8.5 - Unauthenticated Email Domain Restriction Bypass
Mar 12, 2020
CVSS 5.3
EPSS 0.00
CVE-2020-8113
CRITICAL
GitLab 10.7-12.7.2 - Incorrect Access Control
Mar 06, 2020
CVSS 9.8
EPSS 0.00
CVE-2020-8795
HIGH
GitLab EE <12.7.5 - Info Disclosure
Feb 17, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-6833
HIGH
GitLab 11.3.0-12.5.9 - Package and File Disclosure via Request Smuggling
Feb 05, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-7978
HIGH
GitLab 12.6.0-12.6.5 - Denial of Service
Feb 05, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-7977
MEDIUM
GitLab EE <12.7.2 - Info Disclosure
Feb 05, 2020
CVSS 5.3
EPSS 0.00
CVE-2020-7976
MEDIUM
GitLab 12.4.0-12.5.9 - Incorrect Access Control
Feb 05, 2020
CVSS 5.3
EPSS 0.00
CVE-2020-7974
MEDIUM
GitLab EE <12.7.2 - Info Disclosure
Feb 05, 2020
CVSS 5.3
EPSS 0.00
CVE-2020-7973
MEDIUM
GitLab < 12.5.9 - Cross-Site Scripting
Feb 05, 2020
CVSS 6.1
EPSS 0.00
CVE-2020-7972
HIGH
GitLab 12.0-12.5.9 - Insecure Default Permissions
Feb 05, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-7971
MEDIUM
GitLab 11.0.0-12.5.9 - Cross-Site Scripting
Feb 05, 2020
CVSS 6.1
EPSS 0.00
CVE-2020-7969
HIGH
GitLab EE <12.7.2 - Info Disclosure
Feb 05, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-7968
HIGH
GitLab EE <12.7.2 - Info Disclosure
Feb 05, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-7967
MEDIUM
GitLab EE <12.7.2 - Info Disclosure
Feb 05, 2020
CVSS 4.3
EPSS 0.00
CVE-2020-7966
HIGH
GitLab 11.11.0-12.5.9 - Path Traversal
Feb 05, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-8114
CRITICAL
GitLab EE <12.7.2 - Info Disclosure
Feb 05, 2020
CVSS 9.8
EPSS 0.00
CVE-2020-7979
MEDIUM
GitLab EE <12.7.2 - Privilege Escalation
Feb 05, 2020
CVSS 5.3
EPSS 0.00
CVE-2020-6832
MEDIUM
GitLab EE <12.6.1 - Info Disclosure
Jan 13, 2020
CVSS 5.3
EPSS 0.00
CVE-2020-5197
MEDIUM
GitLab 5.1.0-12.6.1 - Exposure of Sensitive Information via Incorrect Access Control
Jan 13, 2020
CVSS 4.3
EPSS 0.00
CVE-2019-14944
MEDIUM
GitLab < 11.11.8, 12 < 12.0.6, 12.1 < 12.1.6 - Command Injection via Gitaly Command-Line Flags
Apr 16, 2023
CVSS 6.5
EPSS 0.09
CVE-2019-14942
MEDIUM
GitLab < 11.11.8, 12 < 12.0.6, 12.1 < 12.1.6 - Cleartext Transmission of Sensitive Information via GitLab Pages Cookies
Apr 16, 2023
CVSS 5.9
EPSS 0.00
CVE-2019-13121
HIGH
GitLab 10.6.0-12.0.2 - Server-Side Request Forgery via GitHub Project Integration
Mar 10, 2020
CVSS 7.5
EPSS 0.00
CVE-2019-13011
MEDIUM
GitLab 8.11.0-12.0.2 - Authenticated Uncontrolled Resource Consumption via Merge Request Template Enumeration
Mar 10, 2020
CVSS 4.3
EPSS 0.00
CVE-2019-13010
MEDIUM
GitLab 8.3.0-12.0.2 - Unauthenticated Uncontrolled Resource Consumption via Color Codes Decoder
Mar 10, 2020
CVSS 5.9
EPSS 0.00
CVE-2019-13009
MEDIUM
GitLab 9.2.0-12.0.2 - Unauthorized File Access via Unsaved Personal Snippet Uploads
Mar 10, 2020
CVSS 6.5
EPSS 0.00