Vulnerabilidades en GitLab
1068 resultadosCVE-2021-22256MEDIUMImproper authorization in GitLab CE/EE affecting all versions since 12.6 allowed guest users to create issues for Sentry errors and track thEPSS 0.7%CVE-2023-2181MEDIUMAn issue has been discovered in GitLab affecting all versions before 15.9.8, 15.10.0 before 15.10.7, and 15.11.0 before 15.11.3. A maliciousEPSS 0.7%CVE-2020-13265MEDIUMUser email verification bypass in GitLab CE/EE 12.5 and later through 13.0.1 allows user to bypass email verificationEPSS 0.7%CVE-2022-3820MEDIUMAn issue has been discovered in GitLab affecting all versions starting from 15.4 prior to 15.4.4, and 15.5 prior to 15.5.2. GitLab was not pEPSS 0.7%CVE-2022-3486MEDIUMAn open redirect vulnerability in GitLab EE/CE affecting all versions from 9.3 prior to 15.3.5, 15.4 prior to 15.4.4, and 15.5 prior to 15.5EPSS 0.7%CVE-2022-3291MEDIUMSerialization of sensitive data in GitLab EE affecting all versions from 14.9 prior to 15.2.5, 15.3 prior to 15.3.4, and 15.4 prior to 15.4.EPSS 0.7%CVE-2022-3902MEDIUMAn issue has been discovered in GitLab affecting all versions starting from 9.3 before 15.4.6, all versions starting from 15.5 before 15.5.5EPSS 0.7%CVE-2020-26407MEDIUMA XSS vulnerability exists in Gitlab CE/EE from 12.4 before 13.4.7, 13.5 before 13.5.5, and 13.6 before 13.6.2 that allows an attacker to peEPSS 0.7%CVE-2025-13928HIGHIncorrect Authorization in GitLabEPSS 0.7%CVE-2022-4365MEDIUMAn issue has been discovered in GitLab CE/EE affecting all versions starting from 11.8 before 15.5.7, all versions starting from 15.6 beforeEPSS 0.7%CVE-2022-2499LOWAn issue has been discovered in GitLab EE affecting all versions starting from 13.10 before 15.0.5, all versions starting from 15.1 before 1EPSS 0.7%CVE-2022-1416MEDIUMMissing sanitization of data in Pipeline error messages in GitLab CE/EE affecting all versions starting from 1.0.2 before 14.8.6, all versioEPSS 0.7%CVE-2022-4054MEDIUMAn issue has been discovered in GitLab affecting all versions starting from 9.3 before 15.4.6, all versions starting from 15.5 before 15.5.5EPSS 0.7%CVE-2024-0199HIGHIncorrect Authorization in GitLabEPSS 0.7%CVE-2020-13327MEDIUMAn issue has been discovered in GitLab Runner affecting all versions starting from 13.4.0 before 13.4.2, all versions starting from 13.3.0 bEPSS 0.7%CVE-2022-3067MEDIUMAn issue has been discovered in the Import functionality of GitLab CE/EE affecting all versions starting from 14.4 before 15.2.5, all versioEPSS 0.7%CVE-2021-22262MEDIUMMissing access control in all GitLab versions starting from 13.12 before 14.0.9, all versions starting from 14.1 before 14.1.4, and all versEPSS 0.7%CVE-2023-3205MEDIUMInefficient Regular Expression Complexity in GitLabEPSS 0.7%CVE-2022-3870MEDIUMAn issue has been discovered in GitLab CE/EE affecting all versions starting from 10.0 before 15.5.7, all versions starting from 15.6 beforeEPSS 0.7%CVE-2020-13338MEDIUMAn issue has been discovered in GitLab affecting versions prior to 12.10.13, 13.0.8, 13.1.2. A stored cross-site scripting vulnerability wasEPSS 0.7%