Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

GitLab — Vulnerabilities & Security Advisories 956

All 956 CVE vulnerabilities found in GitLab, with AI-generated Chinese analysis, references, and POCs.

Vendor: GitLab

CVE IDTitleCVSSSeverityPublished
CVE-2024-9633 Incorrect Ownership Assignment in GitLab CWE-708 3.1 Low2024-11-14
CVE-2024-7404 Improper Restriction of Rendered UI Layers or Frames in GitLab CWE-1021 6.8 Medium2024-11-14
CVE-2024-8648 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab CWE-79 6.1 Medium2024-11-14
CVE-2024-8180 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab CWE-79 5.4 Medium2024-11-14
CVE-2024-9693 Incorrect Authorization in GitLab CWE-863 8.5 High2024-11-14
CVE-2024-6826 Allocation of Resources Without Limits or Throttling in GitLab CWE-770 6.5 Medium2024-10-24
CVE-2024-8312 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab CWE-79 8.7 High2024-10-24
CVE-2024-8970 Incorrect Authorization in GitLab CWE-863 8.2 High2024-10-11
CVE-2024-5005 Incorrect Provision of Specified Functionality in GitLab CWE-684 4.3 Medium2024-10-11
CVE-2024-9164 Missing Authentication for Critical Function in GitLab CWE-306 9.6 Critical2024-10-11
CVE-2024-6530 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab CWE-79 7.3 High2024-10-10
CVE-2024-8977 Server-Side Request Forgery (SSRF) in GitLab CWE-918 8.2 High2024-10-10
CVE-2024-9596 Inclusion of Sensitive Information in Source Code in GitLab CWE-540 3.7 Low2024-10-10
CVE-2024-9623 Incorrect Authorization in GitLab CWE-863 4.9 Medium2024-10-10
CVE-2023-3441 Exposure of Sensitive Information Due to Incompatible Policies in GitLab CWE-213 6.6 Medium2024-10-01
CVE-2024-4099 Improper Encoding or Escaping of Output in GitLab CWE-116 3.1 Low2024-09-26
CVE-2024-8974 Incorrect Provision of Specified Functionality in GitLab CWE-684 2.6 Low2024-09-26
CVE-2024-4278 Incorrect Synchronization in GitLab CWE-821 5.5 Medium2024-09-26
CVE-2024-4283 URL Redirection to Untrusted Site ('Open Redirect') in GitLab CWE-601 6.4 Medium2024-09-16
CVE-2024-6685 Authorization Bypass Through User-Controlled Key in GitLab CWE-639 3.1 Low2024-09-16
CVE-2024-8311 Improper Protection of Alternate Path in GitLab CWE-424 6.5 Medium2024-09-12
CVE-2024-4472 Insertion of Sensitive Information into Log File in GitLab CWE-532 4.0 Medium2024-09-12
CVE-2024-6678 Authentication Bypass by Spoofing in GitLab CWE-290 9.9 Critical2024-09-12
CVE-2024-8641 Privilege Context Switching Error in GitLab CWE-270 6.7 Medium2024-09-12
CVE-2024-8631 Privilege Defined With Unsafe Actions in GitLab CWE-267 5.5 Medium2024-09-12
CVE-2024-8754 External Control of Critical State Data in GitLab CWE-642 6.4 Medium2024-09-12
CVE-2024-8635 Server-Side Request Forgery (SSRF) in GitLab CWE-918 7.7 High2024-09-12
CVE-2024-2743 Incorrect Authorization in GitLab CWE-863 5.3 Medium2024-09-12
CVE-2024-4612 URL Redirection to Untrusted Site ('Open Redirect') in GitLab CWE-601 6.4 Medium2024-09-12
CVE-2024-4660 Missing Authorization in GitLab CWE-862 6.5 Medium2024-09-12

All 956 known CVE vulnerabilities affecting GitLab with full Chinese analysis, references, and POCs where available.