Exposição de GitLab
Development, Issue trackers312
score de exposição
761
sites usam
4
em exploração
24
críticos
CVEs
1.055 resultadosCVE-2021-39906HIGHImproper validation of ipynb files in GitLab CE/EE version 13.5 and above allows an attacker to execute arbitrary JavaScript code on the vicEPSS 60.7%CVE-2022-2230HIGHA Stored Cross-Site Scripting vulnerability in the project settings page in GitLab CE/EE affecting all versions from 14.4 prior to 14.10.5, EPSS 56.2%CVE-2024-1451HIGHImproper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLabEPSS 51.5%CVE-2023-3364HIGHInefficient Regular Expression Complexity in GitLabEPSS 44.7%CVE-2024-8124HIGHInefficient Regular Expression Complexity in GitLabEPSS 39.6%CVE-2020-26413MEDIUMAn issue has been discovered in GitLab CE/EE affecting all versions starting from 13.4 before 13.6.2. Information disclosure via GraphQL resEPSS 33.8%CVE-2024-2454MEDIUMAllocation of Resources Without Limits or Throttling in GitLabEPSS 33.3%CVE-2024-2651MEDIUMInefficient Regular Expression Complexity in GitLabEPSS 33.3%CVE-2024-4901HIGHImproper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLabEPSS 32.8%CVE-2021-22214MEDIUMWhen requests to the internal network for webhooks are enabled, a server-side request forgery vulnerability in GitLab CE/EE affecting all veEPSS 27.8%CVE-2024-2829HIGHInefficient Regular Expression Complexity in GitLabEPSS 26.0%CVE-2024-2434HIGHImproper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in GitLabEPSS 22.9%CVE-2024-2878HIGHAllocation of Resources Without Limits or Throttling in GitLabEPSS 17.6%CVE-2022-1680CRITICALAn account takeover issue has been discovered in GitLab EE affecting all versions starting from 11.10 before 14.9.5, all versions starting fEPSS 15.5%CVE-2024-4024HIGHAuthentication Bypass by Assumed-Immutable Data in GitLabEPSS 14.9%CVE-2022-0735CRITICALAn issue has been discovered in GitLab CE/EE affecting all versions starting from 12.10 before 14.6.5, all versions starting from 14.7 beforEPSS 13.2%CVE-2021-22192CRITICALAn issue has been discovered in GitLab CE/EE affecting all versions starting from 13.2 allowing unauthorized authenticated users to execute EPSS 13.1%CVE-2023-5009CRITICALIncorrect Authorization in GitLabEPSS 8.3%CVE-2024-5655CRITICALImproper Access Control in GitLabEPSS 7.5%CVE-2025-5121HIGHMissing Authorization in GitLabEPSS 6.5%
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →