Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

GitLab — Vulnerabilities & Security Advisories 956

All 956 CVE vulnerabilities found in GitLab, with AI-generated Chinese analysis, references, and POCs.

Vendor: GitLab

CVE IDTitleCVSSSeverityPublished
CVE-2024-0402 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in GitLab CWE-22 9.9 Critical2024-01-26
CVE-2023-2030 Improper Verification of Cryptographic Signature in GitLab CWE-347 3.5 Low2024-01-12
CVE-2023-4812 Incorrect Authorization in GitLab CWE-863 7.6 High2024-01-12
CVE-2023-5356 Incorrect Authorization in GitLab CWE-863 7.3 High2024-01-12
CVE-2023-7028 Weak Password Recovery Mechanism for Forgotten Password in GitLab CWE-640 10.0 Critical2024-01-12
CVE-2023-6955 Missing Authorization in GitLab CWE-862 6.6 Medium2024-01-12
CVE-2023-3907 Improper User Management in GitLab CWE-286 4.9 Medium2023-12-17
CVE-2023-3904 Improper Validation of Specified Type of Input in GitLab CWE-1287 4.3 Medium2023-12-15
CVE-2023-5061 Missing Authorization in GitLab CWE-862 4.3 Medium2023-12-15
CVE-2023-5512 Improper Control of Generation of Code ('Code Injection') in GitLab CWE-94 4.8 Medium2023-12-15
CVE-2023-6051 Improper Control of Generation of Code ('Code Injection') in GitLab CWE-94 5.7 Medium2023-12-15
CVE-2023-6680 Improper Certificate Validation in GitLab CWE-295 7.4 High2023-12-15
CVE-2023-3511 Incorrect Authorization in GitLab CWE-863 2.0 Low2023-12-15
CVE-2023-5332 Dependency on Vulnerable Third-Party Component in GitLab CWE-1395 5.9 Medium2023-12-04
CVE-2023-3443 Incorrect Authorization in GitLab CWE-863 3.1 Low2023-12-01
CVE-2023-3964 Incorrect Authorization in GitLab CWE-863 4.3 Medium2023-12-01
CVE-2023-3949 Insertion of Sensitive Information Into Sent Data in GitLab CWE-201 5.3 Medium2023-12-01
CVE-2023-4317 Incorrect Authorization in GitLab CWE-863 4.3 Medium2023-12-01
CVE-2023-4658 Incorrect Authorization in GitLab CWE-863 3.1 Low2023-12-01
CVE-2023-4912 Allocation of Resources Without Limits or Throttling in GitLab CWE-770 2.6 Low2023-12-01
CVE-2023-5226 Improper Control of Generation of Code ('Code Injection') in GitLab CWE-94 4.8 Medium2023-12-01
CVE-2023-6033 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab CWE-79 8.7 High2023-12-01
CVE-2023-5995 Incorrect Authorization in GitLab CWE-863 4.4 Medium2023-12-01
CVE-2023-4379 Incorrect Authorization in GitLab CWE-863 8.1 High2023-11-09
CVE-2023-4700 Missing Authorization in GitLab CWE-862 3.5 Low2023-11-06
CVE-2023-5963 Allocation of Resources Without Limits or Throttling in GitLab CWE-770 3.1 Low2023-11-06
CVE-2023-3399 Insertion of Sensitive Information Into Sent Data in GitLab CWE-201 8.5 High2023-11-06
CVE-2023-3909 Inefficient Regular Expression Complexity in GitLab CWE-1333 4.3 Medium2023-11-06
CVE-2023-3246 Allocation of Resources Without Limits or Throttling in GitLab CWE-770 4.3 Medium2023-11-06
CVE-2023-5825 Loop with Unreachable Exit Condition ('Infinite Loop') in GitLab CWE-835 6.5 Medium2023-11-06

All 956 known CVE vulnerabilities affecting GitLab with full Chinese analysis, references, and POCs where available.