Exposure of GitLab
Development, Issue trackers329
exposure score
761
sites use
4
exploited
24
critical
CVEs
1,068 resultsCVE-2021-22202LOWAn issue has been discovered in GitLab CE/EE affecting all previous versions. If the victim is an admin, it was possible to issue a CSRF in EPSS 0.5%CVE-2022-0154HIGHAn issue has been discovered in GitLab affecting all versions starting from 7.7 before 14.4.5, all versions starting from 14.5.0 before 14.5EPSS 0.5%CVE-2026-3988HIGHInefficient Algorithmic Complexity in GitLabEPSS 0.5%CVE-2024-1947MEDIUMImproper Handling of Highly Compressed Data (Data Amplification) in GitLabEPSS 0.5%CVE-2025-14513HIGHImproper Validation of Specified Quantity in Input in GitLabEPSS 0.5%CVE-2023-3500MEDIUMImproper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLabEPSS 0.5%CVE-2024-12379MEDIUMAllocation of Resources Without Limits or Throttling in GitLabEPSS 0.5%CVE-2024-8312HIGHImproper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLabEPSS 0.5%CVE-2026-1402MEDIUMAllocation of Resources Without Limits or Throttling in GitLabEPSS 0.5%CVE-2025-2256HIGHImproper Validation of Specified Quantity in Input in GitLabEPSS 0.5%CVE-2025-0194MEDIUMInsertion of Sensitive Information into Externally-Accessible File or Directory in GitLabEPSS 0.5%CVE-2024-1347MEDIUMAuthentication Bypass by Spoofing in GitLabEPSS 0.5%CVE-2024-4006MEDIUMIncorrect Authorization in GitLabEPSS 0.5%CVE-2024-9367MEDIUMAllocation of Resources Without Limits or Throttling in GitLabEPSS 0.5%CVE-2025-0475HIGHImproper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLabEPSS 0.5%CVE-2025-9958HIGHInsertion of Sensitive Information Into Sent Data in GitLabEPSS 0.5%CVE-2024-3976MEDIUMMissing Authorization in GitLabEPSS 0.5%CVE-2024-11274HIGHURL Redirection to Untrusted Site ('Open Redirect') in GitLabEPSS 0.5%CVE-2021-22218LOWAll versions of GitLab CE/EE starting from 12.8 before 13.10.5, all versions starting from 13.11 before 13.11.5, and all versions starting fEPSS 0.5%CVE-2025-0993HIGHAllocation of Resources Without Limits or Throttling in GitLabEPSS 0.5%
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →