Shodan
Vulnerabilities
Vulnerable Software
Gitlab:  >> Gitlab  >> 10.5.4  Security Vulnerabilities
CVE-2018-19856
GitLab CE/EE before 11.3.12, 11.4.x before 11.4.10, and 11.5.x before 11.5.3 allows Directory Traversal in Templates API.
CVSS Score
7.5
EPSS Score
0.001
Published
2019-03-26
CVE-2019-6240
An issue was discovered in GitLab Community and Enterprise Edition before 11.4. It allows Directory Traversal.
CVSS Score
7.5
EPSS Score
0.001
Published
2019-03-25
CVE-2018-18640
An issue was discovered in GitLab Community and Enterprise Edition before 11.2.7, 11.3.x before 11.3.8, and 11.4.x before 11.4.3. It has Information Exposure Through Browser Caching.
CVSS Score
6.5
EPSS Score
0.001
Published
2018-12-04
CVE-2018-18641
An issue was discovered in GitLab Community and Enterprise Edition before 11.2.7, 11.3.x before 11.3.8, and 11.4.x before 11.4.3. It has Cleartext Storage of Sensitive Information.
CVSS Score
9.8
EPSS Score
0.001
Published
2018-12-04
CVE-2018-18642
An issue was discovered in GitLab Community and Enterprise Edition before 11.2.7, 11.3.x before 11.3.8, and 11.4.x before 11.4.3. It has XSS.
CVSS Score
6.1
EPSS Score
0.001
Published
2018-12-04
CVE-2018-18645
An issue was discovered in GitLab Community and Enterprise Edition before 11.2.7, 11.3.x before 11.3.8, and 11.4.x before 11.4.3. It allows for Information Exposure via unsubscribe links in email replies.
CVSS Score
4.3
EPSS Score
0.001
Published
2018-12-04
CVE-2018-18646
An issue was discovered in GitLab Community and Enterprise Edition before 11.2.7, 11.3.x before 11.3.8, and 11.4.x before 11.4.3. It allows SSRF.
CVSS Score
8.8
EPSS Score
0.002
Published
2018-12-04
CVE-2018-18647
An issue was discovered in GitLab Community and Enterprise Edition before 11.2.7, 11.3.x before 11.3.8, and 11.4.x before 11.4.3. It has Missing Authorization.
CVSS Score
6.5
EPSS Score
0.001
Published
2018-12-04
CVE-2018-16048
An issue was discovered in GitLab Community and Enterprise Edition before 11.0.6, 11.1.x before 11.1.5, and 11.2.x before 11.2.2. There is Missing Authorization Control for API Repository Storage.
CVSS Score
6.5
EPSS Score
0.001
Published
2018-10-03
CVE-2018-16049
An issue was discovered in GitLab Community and Enterprise Edition before 11.0.6, 11.1.x before 11.1.5, and 11.2.x before 11.2.2. There is Sensitive Data Disclosure in Sidekiq Logs through an Error Message.
CVSS Score
9.8
EPSS Score
0.002
Published
2018-10-03


Products
Pricing
Contact Us

Shodan ® - All rights reserved