| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-0410 | Improper Enforcement of Behavioral Workflow in GitLab | GitLab | GitLab | High | 7.7 | 2024-02-21 23:31:00 | Deep Dive |
| CVE-2024-1451 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab | GitLab | GitLab | High | 8.7 | 2024-02-21 23:30:50 | Deep Dive |
| CVE-2024-1525 | Authentication Bypass Using an Alternate Path or Channel in GitLab | GitLab | GitLab | Medium | 5.3 | 2024-02-21 23:30:45 | Deep Dive |
| CVE-2024-0861 | Direct Request ('Forced Browsing') in GitLab | GitLab | GitLab | Medium | 4.3 | 2024-02-21 23:30:40 | Deep Dive |
| CVE-2023-3509 | Incorrect Authorization in GitLab | GitLab | GitLab | Low | 3.7 | 2024-02-21 22:57:15 | Deep Dive |
| CVE-2024-1250 | Privilege Chaining in GitLab | GitLab | GitLab | Medium | 6.5 | 2024-02-12 20:47:44 | Deep Dive |
| CVE-2023-6564 | Incorrect Authorization in GitLab | GitLab | GitLab | Medium | 6.5 | 2024-02-08 11:30:52 | Deep Dive |
| CVE-2023-6736 | Inefficient Regular Expression Complexity in GitLab | GitLab | GitLab | Medium | 6.5 | 2024-02-07 22:02:31 | Deep Dive |
| CVE-2023-6840 | Missing Authorization in GitLab | GitLab | GitLab | Medium | 6.7 | 2024-02-07 22:02:21 | Deep Dive |
| CVE-2024-1066 | Allocation of Resources Without Limits or Throttling in GitLab | GitLab | GitLab | Medium | 6.5 | 2024-02-07 22:02:11 | Deep Dive |
| CVE-2023-5612 | Missing Authorization in GitLab | GitLab | GitLab | Medium | 5.3 | 2024-01-26 02:02:40 | Deep Dive |
| CVE-2023-6159 | Inefficient Regular Expression Complexity in GitLab | GitLab | GitLab | Medium | 6.5 | 2024-01-26 02:02:30 | Deep Dive |
| CVE-2023-5933 | Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) in GitLab | GitLab | GitLab | Medium | 6.4 | 2024-01-26 01:02:59 | Deep Dive |
| CVE-2024-0456 | Direct Request ('Forced Browsing') in GitLab | GitLab | GitLab | Medium | 4.3 | 2024-01-26 01:02:44 | Deep Dive |
| CVE-2024-0402 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in GitLab | GitLab | GitLab | Critical | 9.9 | 2024-01-26 01:02:39 | Deep Dive |
| CVE-2024-23903 | Jenkins Plugin GitLab Branch Source 安全漏洞 | Jenkins Project | Jenkins GitLab Branch Source Plugin | 低危 | - | 2024-01-24 17:52:27 | Deep Dive |
| CVE-2024-23902 | Jenkins Plugin GitLab Branch Source 安全漏洞 | Jenkins Project | Jenkins GitLab Branch Source Plugin | 中危 | - | 2024-01-24 17:52:26 | Deep Dive |
| CVE-2024-23901 | Jenkins Plugin GitLab Branch Source 安全漏洞 | Jenkins Project | Jenkins GitLab Branch Source Plugin | 中危 | - | 2024-01-24 17:52:25 | Deep Dive |
| CVE-2023-2030 | Improper Verification of Cryptographic Signature in GitLab | GitLab | GitLab | Low | 3.5 | 2024-01-12 13:57:07 | Deep Dive |
| CVE-2023-4812 | Incorrect Authorization in GitLab | GitLab | GitLab | High | 7.6 | 2024-01-12 13:56:57 | Deep Dive |