NVD - Results

Sort results by:

Search Results (Refine Search)

Search Parameters:

Keyword (text search): cpe:2.3:a:gitlab:gitlab:7.4.5:*:*:*:community:*:*:*
CPE Name Search: true

There are 213 matching records.

Displaying matches 181 through 200.

Vuln ID	Summary	CVSS Severity
CVE-2019-9222	An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. It has Insecure Permissions. Published: April 17, 2019; 1:29:01 PM -0400	V4.0:(not available) V3.0: 8.1 HIGH V2.0: 5.5 MEDIUM
CVE-2019-9220	An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. It allows Uncontrolled Resource Consumption. Published: April 17, 2019; 1:29:01 PM -0400	V4.0:(not available) V3.0: 7.5 HIGH V2.0: 5.0 MEDIUM
CVE-2019-9219	An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. It has Incorrect Access Control (issue 2 of 5). Published: April 17, 2019; 1:29:01 PM -0400	V4.0:(not available) V3.0: 3.7 LOW V2.0: 4.3 MEDIUM
CVE-2019-9217	An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. Its User Interface has a Misrepresentation of Critical Information. Published: April 17, 2019; 1:29:01 PM -0400	V4.0:(not available) V3.0: 9.8 CRITICAL V2.0: 7.5 HIGH
CVE-2019-9179	An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. It allows Information Exposure (issue 5 of 5). Published: April 17, 2019; 1:29:00 PM -0400	V4.0:(not available) V3.0: 3.7 LOW V2.0: 4.3 MEDIUM
CVE-2019-9178	An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. It allows Information Exposure (issue 4 of 5). Published: April 17, 2019; 1:29:00 PM -0400	V4.0:(not available) V3.0: 5.3 MEDIUM V2.0: 5.0 MEDIUM
CVE-2019-9176	An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. It allows CSRF. Published: April 17, 2019; 1:29:00 PM -0400	V4.0:(not available) V3.0: 6.5 MEDIUM V2.0: 5.8 MEDIUM
CVE-2019-9175	An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. It allows Information Exposure (issue 3 of 5). Published: April 17, 2019; 1:29:00 PM -0400	V4.0:(not available) V3.0: 5.3 MEDIUM V2.0: 5.0 MEDIUM
CVE-2019-9174	An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. It allows SSRF. Published: April 17, 2019; 1:29:00 PM -0400	V4.0:(not available) V3.0: 10.0 CRITICAL V2.0: 7.5 HIGH
CVE-2019-9172	An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. It allows Information Exposure (issue 2 of 5). Published: April 17, 2019; 1:29:00 PM -0400	V4.0:(not available) V3.0: 5.9 MEDIUM V2.0: 4.3 MEDIUM
CVE-2019-9171	An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. It allows Information Exposure (issue 1 of 5). Published: April 17, 2019; 1:29:00 PM -0400	V4.0:(not available) V3.0: 3.7 LOW V2.0: 4.3 MEDIUM
CVE-2019-9170	An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. It has Incorrect Access Control. Published: April 17, 2019; 1:29:00 PM -0400	V4.0:(not available) V3.0: 5.3 MEDIUM V2.0: 5.0 MEDIUM
CVE-2019-6796	An issue was discovered in GitLab Community and Enterprise Edition before 11.5.8, 11.6.x before 11.6.6, and 11.7.x before 11.7.1. It allows XSS (issue 2 of 2). The user status field contains a lack of input validation and output encoding that results in a persistent XSS. Published: April 11, 2019; 4:29:00 PM -0400	V4.0:(not available) V3.0: 6.1 MEDIUM V2.0: 4.3 MEDIUM
CVE-2018-20229	GitLab Community and Enterprise Edition before 11.3.14, 11.4.x before 11.4.12, and 11.5.x before 11.5.5 allows Directory Traversal. Published: April 04, 2019; 1:29:00 PM -0400	V4.0:(not available) V3.0: 7.5 HIGH V2.0: 5.0 MEDIUM
CVE-2018-19856	GitLab CE/EE before 11.3.12, 11.4.x before 11.4.10, and 11.5.x before 11.5.3 allows Directory Traversal in Templates API. Published: March 26, 2019; 12:29:00 PM -0400	V4.0:(not available) V3.0: 7.5 HIGH V2.0: 5.0 MEDIUM
CVE-2019-6240	An issue was discovered in GitLab Community and Enterprise Edition before 11.4. It allows Directory Traversal. Published: March 25, 2019; 1:29:01 PM -0400	V4.0:(not available) V3.0: 7.5 HIGH V2.0: 5.0 MEDIUM
CVE-2018-18646	An issue was discovered in GitLab Community and Enterprise Edition before 11.2.7, 11.3.x before 11.3.8, and 11.4.x before 11.4.3. It allows SSRF. Published: December 04, 2018; 6:29:00 PM -0500	V4.0:(not available) V3.0: 8.8 HIGH V2.0: 6.5 MEDIUM
CVE-2018-18645	An issue was discovered in GitLab Community and Enterprise Edition before 11.2.7, 11.3.x before 11.3.8, and 11.4.x before 11.4.3. It allows for Information Exposure via unsubscribe links in email replies. Published: December 04, 2018; 6:29:00 PM -0500	V4.0:(not available) V3.0: 4.3 MEDIUM V2.0: 4.3 MEDIUM
CVE-2018-18640	An issue was discovered in GitLab Community and Enterprise Edition before 11.2.7, 11.3.x before 11.3.8, and 11.4.x before 11.4.3. It has Information Exposure Through Browser Caching. Published: December 04, 2018; 6:29:00 PM -0500	V4.0:(not available) V3.0: 6.5 MEDIUM V2.0: 4.0 MEDIUM
CVE-2018-12607	An issue was discovered in GitLab Community Edition and Enterprise Edition before 10.7.6, 10.8.x before 10.8.5, and 11.x before 11.0.1. The charts feature contained a persistent XSS issue due to a lack of output encoding. Published: August 03, 2018; 2:29:00 PM -0400	V4.0:(not available) V3.0: 5.4 MEDIUM V2.0: 3.5 LOW