GitLab — Vulnerabilities & Security Advisories 956

All 956 CVE vulnerabilities found in GitLab, with AI-generated Chinese analysis, references, and POCs.

CVE ID	Title	CVSS	Severity	Published
CVE-2023-4008	Incorrect Ownership Assignment in GitLab CWE-708	5.3	Medium	2023-08-03
CVE-2023-3932	Incorrect User Management in GitLab CWE-286	5.3	High	2023-08-03
CVE-2023-2022	Missing Authorization in GitLab CWE-262	4.3	Medium	2023-08-02
CVE-2023-3401	Improper Control of Generation of Code ('Code Injection') in GitLab CWE-94	4.8	Medium	2023-08-02
CVE-2023-4011	Allocation of Resources Without Limits or Throttling in GitLab CWE-770	4.3	Medium	2023-08-02
CVE-2023-3500	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab CWE-79	4.8	Medium	2023-08-02
CVE-2023-3900	Improper Validation of Specified Type of Input in GitLab CWE-1287	4.3	Medium	2023-08-02
CVE-2023-3993	Insertion of Sensitive Information into Log File in GitLab CWE-532	4.9	Medium	2023-08-02
CVE-2023-3994	Inefficient Regular Expression Complexity in GitLab CWE-1333	7.5	High	2023-08-02
CVE-2023-0632	Inefficient Regular Expression Complexity in GitLab CWE-1333	6.5	Medium	2023-08-01
CVE-2023-1210	Generation of Error Message Containing Sensitive Information in GitLab CWE-209	3.1	Low	2023-08-01
CVE-2023-2164	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab CWE-79	5.4	Medium	2023-08-01
CVE-2023-3364	Inefficient Regular Expression Complexity in GitLab CWE-1333	7.5	High	2023-08-01
CVE-2023-3385	Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in GitLab CWE-22	6.3	Medium	2023-08-01
CVE-2023-1401	Insertion of Sensitive Information Into Sent Data in GitLab CWE-201	5.0	Medium	2023-07-26
CVE-2023-3102	Insertion of Sensitive Information Into Sent Data in GitLab CWE-201	5.3	Medium	2023-07-21
CVE-2023-3484	Incorrect Authorization in GitLab CWE-863	8.0	High	2023-07-21
CVE-2023-2620	Insertion of Sensitive Information Into Sent Data in GitLab CWE-201	5.5	Medium	2023-07-13
CVE-2023-2576	Incorrect Authorization in GitLab CWE-863	4.3	Medium	2023-07-13
CVE-2023-3362	Generation of Error Message Containing Sensitive Information in GitLab CWE-209	5.3	Medium	2023-07-13
CVE-2023-3363	Insertion of Sensitive Information into Log File in GitLab CWE-532	3.9	Low	2023-07-13
CVE-2023-3444	Incorrect Authorization in GitLab CWE-863	5.7	Medium	2023-07-13
CVE-2023-3424	Inefficient Regular Expression Complexity in GitLab CWE-1333	7.5	High	2023-07-13
CVE-2023-2200	Improper Encoding or Escaping of Output in GitLab CWE-116	4.1	Medium	2023-07-13
CVE-2023-2190	Authorization Bypass Through User-Controlled Key in GitLab CWE-639	6.5	Medium	2023-07-13
CVE-2023-1936	Exposure of Private Personal Information to an Unauthorized Actor in GitLab CWE-359	3.5	Low	2023-07-11
CVE-2023-2232	GitLab 安全漏洞	6.5	Medium	2023-06-28
CVE-2022-4143	GitLab 安全漏洞	6.4	Medium	2023-06-28
CVE-2023-2589	GitLab 安全漏洞	5.9	Medium	2023-06-07
CVE-2023-2485	Incorrect Privilege Assignment in GitLab CWE-266	4.4	Medium	2023-06-07

All 956 known CVE vulnerabilities affecting GitLab with full Chinese analysis, references, and POCs where available.

Goal Reached Thanks to every supporter — we hit 100%!

GitLab — Vulnerabilities & Security Advisories 956