gitlab

1,423 tracked vulnerabilities.

CVE-2019-9172 MEDIUM
GitLab <11.6.10-11.8.1 - Info Disclosure
Apr 17, 2019
CVSS 5.9
EPSS 0.02
CVE-2019-9171 LOW
GitLab < 11.6.10, 11.7.x < 11.7.6, 11.8.x < 11.8.1 - Information Exposure
Apr 17, 2019
CVSS 3.7
EPSS 0.01
CVE-2019-9170 MEDIUM
GitLab < 11.6.10, 11.7.x < 11.7.6, 11.8.x < 11.8.1 - Incorrect Access Control
Apr 17, 2019
CVSS 5.3
EPSS 0.02
CVE-2019-7155 MEDIUM
GitLab <11.5.8-11.7.1 - Privilege Escalation
Apr 16, 2019
CVSS 6.5
EPSS 0.01
CVE-2019-6796 MEDIUM
GitLab < 11.5.8, 11.6.x < 11.6.6, 11.7.x < 11.7.1 - Stored Cross-Site Scripting in User Status Field
Apr 11, 2019
CVSS 6.1
EPSS 0.01
CVE-2019-6240 HIGH
GitLab < 11.4.0 - Path Traversal
Mar 25, 2019
CVSS 7.5
EPSS 0.02
CVE-2018-17537 MEDIUM
GitLab < 11.1.7, 11.2.x < 11.2.4, 11.3.x < 11.3.1 - Stored Cross-Site Scripting in Blog Viewer
Apr 16, 2023
CVSS 5.4
EPSS 0.00
CVE-2018-17536 MEDIUM
GitLab < 11.1.7, 11.2.x < 11.2.4, 11.3.x < 11.3.1 - Stored Cross-Site Scripting via Project Import
Apr 15, 2023
CVSS 5.4
EPSS 0.00
CVE-2018-17455 HIGH
GitLab EE <11.1.7, <11.2.4, <11.3.1 - Info Disclosure
Apr 15, 2023
CVSS 7.5
EPSS 0.01
CVE-2018-17454 MEDIUM
GitLab < 11.1.7, 11.2.x < 11.2.4, 11.3.x < 11.3.1 - Stored Cross-Site Scripting on Issue Details Screen
Apr 15, 2023
CVSS 5.4
EPSS 0.00
CVE-2018-17453 MEDIUM
GitLab <11.1.7-11.3.1 - Info Disclosure
Apr 15, 2023
CVSS 5.3
EPSS 0.01
CVE-2018-17452 CRITICAL
GitLab <11.1.7-11.2.4-11.3.1 - SSRF
Apr 15, 2023
CVSS 9.8
EPSS 0.01
CVE-2018-17451 HIGH
GitLab <11.1.7, <11.2.4, <11.3.1 - CSRF
Apr 15, 2023
CVSS 8.8
EPSS 0.00
CVE-2018-17450 MEDIUM
GitLab <11.1.7, <11.2.4, <11.3.1 - SSRF
Apr 15, 2023
CVSS 4.3
EPSS 0.00
CVE-2018-17449 HIGH
GitLab <11.1.7-11.3.1 - Info Disclosure
Apr 15, 2023
CVSS 7.5
EPSS 0.01
CVE-2018-15472 HIGH
GitLab < 11.1.7, 11.2.x < 11.2.4, 11.3.x < 11.3.1 - Denial of Service via Rouge Diff Formatter
Apr 15, 2023
CVSS 7.5
EPSS 0.01
CVE-2018-20507 MEDIUM
GitLab 11.2.0-11.4.12, 11.5.0-11.5.5, 11.6.0 - Unauthenticated Incorrect Access Control
Dec 30, 2019
CVSS 5.3
EPSS 0.01
CVE-2018-20501 MEDIUM
GitLab 8.12.0-11.4.12 11.5.0-11.5.5 11.6.0 - Missing Authorization
Dec 30, 2019
CVSS 6.3
EPSS 0.01
CVE-2018-20499 HIGH
GitLab 11.x < 11.4.13, 11.5.x < 11.5.6, 11.6.x < 11.6.1 - Server-Side Request Forgery
Dec 30, 2019
CVSS 7.2
EPSS 0.01
CVE-2018-20498 MEDIUM
GitLab 8.10.0-11.4.12, 11.5.0-11.5.5, 11.6.0 - Incorrect Authorization
Dec 30, 2019
CVSS 4.3
EPSS 0.01
CVE-2018-20497 MEDIUM
GitLab < 11.4.13, 11.5.x < 11.5.6, 11.6.x < 11.6.1 - Server-Side Request Forgery
Dec 30, 2019
CVSS 5.0
EPSS 0.01
CVE-2018-20496 MEDIUM
GitLab 11.2.x-11.4.x < 11.4.13, 11.5.x < 11.5.6, 11.6.x < 11.6.1 - Cross-Site Scripting
Dec 30, 2019
CVSS 5.4
EPSS 0.01
CVE-2018-20495 MEDIUM
GitLab 11.3.0-11.4.12, 11.5.0-11.5.5, 11.6.0 - Information Exposure
Dec 30, 2019
CVSS 5.3
EPSS 0.01
CVE-2018-20494 HIGH
GitLab 8.4.0-11.4.12 11.5.0-11.5.5 11.6.0 - Incorrect Authorization
Dec 30, 2019
CVSS 7.5
EPSS 0.02
CVE-2018-20493 MEDIUM
GitLab 8.17.0-11.4.12 11.5.0-11.5.5 11.6.0 - Incorrect Authorization
Dec 30, 2019
CVSS 4.3
EPSS 0.01