gitlab
1,423 tracked vulnerabilities.
CVE-2020-7971
MEDIUM
GitLab 11.0.0-12.5.9 - Cross-Site Scripting
Feb 05, 2020
CVSS 6.1
EPSS 0.01
CVE-2020-7969
HIGH
GitLab EE <12.7.2 - Info Disclosure
Feb 05, 2020
CVSS 7.5
EPSS 0.01
CVE-2020-7968
HIGH
GitLab EE <12.7.2 - Info Disclosure
Feb 05, 2020
CVSS 7.5
EPSS 0.01
CVE-2020-7967
MEDIUM
GitLab EE <12.7.2 - Info Disclosure
Feb 05, 2020
CVSS 4.3
EPSS 0.01
CVE-2020-7966
HIGH
GitLab 11.11.0-12.5.9 - Path Traversal
Feb 05, 2020
CVSS 7.5
EPSS 0.02
CVE-2020-8114
CRITICAL
GitLab EE <12.7.2 - Info Disclosure
Feb 05, 2020
CVSS 9.8
EPSS 0.01
CVE-2020-7979
MEDIUM
GitLab EE <12.7.2 - Privilege Escalation
Feb 05, 2020
CVSS 5.3
EPSS 0.01
CVE-2020-6832
MEDIUM
GitLab EE <12.6.1 - Info Disclosure
Jan 13, 2020
CVSS 5.3
EPSS 0.01
CVE-2020-5197
MEDIUM
GitLab 5.1.0-12.6.1 - Exposure of Sensitive Information via Incorrect Access Control
Jan 13, 2020
CVSS 4.3
EPSS 0.01
CVE-2019-14944
MEDIUM
GitLab < 11.11.8, 12 < 12.0.6, 12.1 < 12.1.6 - Command Injection via Gitaly Command-Line Flags
Apr 16, 2023
CVSS 6.5
EPSS 0.02
CVE-2019-14942
MEDIUM
GitLab < 11.11.8, 12 < 12.0.6, 12.1 < 12.1.6 - Cleartext Transmission of Sensitive Information via GitLab Pages Cookies
Apr 16, 2023
CVSS 5.9
EPSS 0.00
CVE-2019-13121
HIGH
GitLab 10.6.0-12.0.2 - Server-Side Request Forgery via GitHub Project Integration
Mar 10, 2020
CVSS 7.5
EPSS 0.01
CVE-2019-13011
MEDIUM
GitLab 8.11.0-12.0.2 - Authenticated Uncontrolled Resource Consumption via Merge Request Template Enumeration
Mar 10, 2020
CVSS 4.3
EPSS 0.01
CVE-2019-13010
MEDIUM
GitLab 8.3.0-12.0.2 - Unauthenticated Uncontrolled Resource Consumption via Color Codes Decoder
Mar 10, 2020
CVSS 5.9
EPSS 0.01
CVE-2019-13009
MEDIUM
GitLab 9.2.0-12.0.2 - Unauthorized File Access via Unsaved Personal Snippet Uploads
Mar 10, 2020
CVSS 6.5
EPSS 0.01
CVE-2019-13007
MEDIUM
GitLab 11.11-12.0.2 - Uncontrolled Resource Consumption via Service Template Enablement
Mar 10, 2020
CVSS 4.9
EPSS 0.01
CVE-2019-13006
MEDIUM
GitLab CE/EE <12.0.2 - Info Disclosure
Mar 10, 2020
CVSS 4.3
EPSS 0.01
CVE-2019-13005
MEDIUM
GitLab EE/CE <12.0.2 - Info Disclosure
Mar 10, 2020
CVSS 4.3
EPSS 0.01
CVE-2019-13004
MEDIUM
GitLab CE/EE <12.0.2 - Info Disclosure
Mar 10, 2020
CVSS 5.3
EPSS 0.01
CVE-2019-13003
HIGH
GitLab < 12.0.3 - Uncontrolled Resource Consumption in CI Parser
Mar 10, 2020
CVSS 7.5
EPSS 0.01
CVE-2019-13002
MEDIUM
GitLab CE/EE <12.0.2 - Info Disclosure
Mar 10, 2020
CVSS 4.3
EPSS 0.01
CVE-2019-13001
MEDIUM
GitLab 11.9.0-12.0.2 - Unauthenticated Snippet Comment Authorization Bypass
Mar 10, 2020
CVSS 4.3
EPSS 0.01
CVE-2019-12446
HIGH
GitLab 8.3.0-11.11.0 - Information Exposure via Error Message
Mar 10, 2020
CVSS 7.5
EPSS 0.01
CVE-2019-12445
MEDIUM
GitLab 8.4.0-11.11.0 - Stored Cross-Site Scripting via Project File Import
Mar 10, 2020
CVSS 5.4
EPSS 0.01
CVE-2019-12444
MEDIUM
GitLab 8.9.0-11.11.0 - Stored Cross-Site Scripting in Wiki Pages
Mar 10, 2020
CVSS 6.1
EPSS 0.01