Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Information disclosure in Advanced Search component of GitLab EE starting from 8.4 results in exposure of search terms via Rails logs. This affects versions >=8.4 to <13.4.7, >=13.5 to <13.5.5, and >=13.6 to <13.6.2.
CVSS Information
CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:H/I:N/A:N
Vulnerability Type
N/A
Vulnerability Title
GitLab 信息泄露漏洞
Vulnerability Description
GitLab是美国等都是美国(GitLab)公司的产品。GitLab是一款使用Ruby on Rails开发的、自托管的、Git(版本控制系统)项目仓库应用程序。Git等都是的产品。Git是一套免费、开源的分布式版本控制系统。Rails等都是Rails(Rails)团队的产品。Rails是一套基于Ruby语言的开源Web应用框架。 GitLab EE 8.4之后版本存在安全漏洞,该漏洞源于GitLab EE高级搜索部分的信息披露将导致通过Rails日志披露搜索词。以下产品及版本受到影响:8.4 =< ve
CVSS Information
N/A
Vulnerability Type
N/A