Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A DNS rebinding vulnerability in the Irker IRC Gateway integration in all versions of GitLab CE/EE since version 7.9 allows an attacker to trigger Server Side Request Forgery (SSRF) attacks.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
Vulnerability Type
N/A
Vulnerability Title
GitLab Enterprise Edition 代码问题漏洞
Vulnerability Description
GitLab Enterprise Edition是一套内容管理系统。 GitLab Enterprise Edition 和 Gitlab Community Edition 存在代码问题漏洞,该漏洞源于Irker IRC网关集成中的DNS重新绑定问题。远程攻击者可利用该漏洞可以发送一个特别制作的HTTP请求,并欺骗应用程序向任意系统发起请求。远程攻击者可利用该漏洞执行SSRF攻击。
CVSS Information
N/A
Vulnerability Type
N/A