Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Missing sanitization of logged exception messages in all versions prior to 14.7.7, 14.8 prior to 14.8.5, and 14.9 prior to 14.9.2 of GitLab CE/EE causes potential sensitive values in invalid URLs to be logged
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:C/C:L/I:N/A:N
Vulnerability Type
N/A
Vulnerability Title
GitLab Community Edition 和 Enterprise Edition 日志信息泄露漏洞
Vulnerability Description
GitLab Enterprise Edition是一套内容管理系统。GitLab Community Edition是美国GitLab公司的一种社区版 GitLab 。 GitLab Community Edition (CE) 和 Enterprise Edition (EE)存在日志信息泄露漏洞,该漏洞是由于缺少对记录的异常消息的清理而存在的。远程管理员可以未经授权访问系统上的敏感信息。该漏洞允许远程用户访问潜在的敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A