gitlab
1,423 tracked vulnerabilities.
CVE-2019-9172
MEDIUM
GitLab <11.6.10-11.8.1 - Info Disclosure
Apr 17, 2019
CVSS 5.9
EPSS 0.02
CVE-2019-9171
LOW
GitLab < 11.6.10, 11.7.x < 11.7.6, 11.8.x < 11.8.1 - Information Exposure
Apr 17, 2019
CVSS 3.7
EPSS 0.01
CVE-2019-9170
MEDIUM
GitLab < 11.6.10, 11.7.x < 11.7.6, 11.8.x < 11.8.1 - Incorrect Access Control
Apr 17, 2019
CVSS 5.3
EPSS 0.02
CVE-2019-7155
MEDIUM
GitLab <11.5.8-11.7.1 - Privilege Escalation
Apr 16, 2019
CVSS 6.5
EPSS 0.01
CVE-2019-6796
MEDIUM
GitLab < 11.5.8, 11.6.x < 11.6.6, 11.7.x < 11.7.1 - Stored Cross-Site Scripting in User Status Field
Apr 11, 2019
CVSS 6.1
EPSS 0.01
CVE-2019-6240
HIGH
GitLab < 11.4.0 - Path Traversal
Mar 25, 2019
CVSS 7.5
EPSS 0.02
CVE-2018-17537
MEDIUM
GitLab < 11.1.7, 11.2.x < 11.2.4, 11.3.x < 11.3.1 - Stored Cross-Site Scripting in Blog Viewer
Apr 16, 2023
CVSS 5.4
EPSS 0.00
CVE-2018-17536
MEDIUM
GitLab < 11.1.7, 11.2.x < 11.2.4, 11.3.x < 11.3.1 - Stored Cross-Site Scripting via Project Import
Apr 15, 2023
CVSS 5.4
EPSS 0.00
CVE-2018-17455
HIGH
GitLab EE <11.1.7, <11.2.4, <11.3.1 - Info Disclosure
Apr 15, 2023
CVSS 7.5
EPSS 0.01
CVE-2018-17454
MEDIUM
GitLab < 11.1.7, 11.2.x < 11.2.4, 11.3.x < 11.3.1 - Stored Cross-Site Scripting on Issue Details Screen
Apr 15, 2023
CVSS 5.4
EPSS 0.00
CVE-2018-17453
MEDIUM
GitLab <11.1.7-11.3.1 - Info Disclosure
Apr 15, 2023
CVSS 5.3
EPSS 0.01
CVE-2018-17452
CRITICAL
GitLab <11.1.7-11.2.4-11.3.1 - SSRF
Apr 15, 2023
CVSS 9.8
EPSS 0.01
CVE-2018-17451
HIGH
GitLab <11.1.7, <11.2.4, <11.3.1 - CSRF
Apr 15, 2023
CVSS 8.8
EPSS 0.00
CVE-2018-17450
MEDIUM
GitLab <11.1.7, <11.2.4, <11.3.1 - SSRF
Apr 15, 2023
CVSS 4.3
EPSS 0.00
CVE-2018-17449
HIGH
GitLab <11.1.7-11.3.1 - Info Disclosure
Apr 15, 2023
CVSS 7.5
EPSS 0.01
CVE-2018-15472
HIGH
GitLab < 11.1.7, 11.2.x < 11.2.4, 11.3.x < 11.3.1 - Denial of Service via Rouge Diff Formatter
Apr 15, 2023
CVSS 7.5
EPSS 0.01
CVE-2018-20507
MEDIUM
GitLab 11.2.0-11.4.12, 11.5.0-11.5.5, 11.6.0 - Unauthenticated Incorrect Access Control
Dec 30, 2019
CVSS 5.3
EPSS 0.01
CVE-2018-20501
MEDIUM
GitLab 8.12.0-11.4.12 11.5.0-11.5.5 11.6.0 - Missing Authorization
Dec 30, 2019
CVSS 6.3
EPSS 0.01
CVE-2018-20499
HIGH
GitLab 11.x < 11.4.13, 11.5.x < 11.5.6, 11.6.x < 11.6.1 - Server-Side Request Forgery
Dec 30, 2019
CVSS 7.2
EPSS 0.01
CVE-2018-20498
MEDIUM
GitLab 8.10.0-11.4.12, 11.5.0-11.5.5, 11.6.0 - Incorrect Authorization
Dec 30, 2019
CVSS 4.3
EPSS 0.01
CVE-2018-20497
MEDIUM
GitLab < 11.4.13, 11.5.x < 11.5.6, 11.6.x < 11.6.1 - Server-Side Request Forgery
Dec 30, 2019
CVSS 5.0
EPSS 0.01
CVE-2018-20496
MEDIUM
GitLab 11.2.x-11.4.x < 11.4.13, 11.5.x < 11.5.6, 11.6.x < 11.6.1 - Cross-Site Scripting
Dec 30, 2019
CVSS 5.4
EPSS 0.01
CVE-2018-20495
MEDIUM
GitLab 11.3.0-11.4.12, 11.5.0-11.5.5, 11.6.0 - Information Exposure
Dec 30, 2019
CVSS 5.3
EPSS 0.01
CVE-2018-20494
HIGH
GitLab 8.4.0-11.4.12 11.5.0-11.5.5 11.6.0 - Incorrect Authorization
Dec 30, 2019
CVSS 7.5
EPSS 0.02
CVE-2018-20493
MEDIUM
GitLab 8.17.0-11.4.12 11.5.0-11.5.5 11.6.0 - Incorrect Authorization
Dec 30, 2019
CVSS 4.3
EPSS 0.01