Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

GitLab — Vulnerabilities & Security Advisories 1012

Browse all 1012 CVE security advisories affecting GitLab. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by GitLab:GitLabGitLab CE/EEGitLab Community and Enterprise EditionsGitLab EEGitLab Runnergitlab-vscode-extensionDASTGitLab Community Edition and GitLab Enterprise EditionGitalyGitLab PagesDAST API scannerGitLab DAST API scannerGitLab VSCode ForkGitLab Language ServerGitLab AI Gateway
CVE IDTitleCVSSSeverityPublished
CVE-2023-6159 Inefficient Regular Expression Complexity in GitLab — GitLabCWE-1333 6.5 Medium2024-01-26
CVE-2023-5933 Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) in GitLab — GitLabCWE-80 6.4 Medium2024-01-26
CVE-2024-0456 Direct Request ('Forced Browsing') in GitLab — GitLabCWE-425 4.3 Medium2024-01-26
CVE-2024-0402 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in GitLab — GitLabCWE-22 9.9 Critical2024-01-26
CVE-2023-2030 Improper Verification of Cryptographic Signature in GitLab — GitLabCWE-347 3.5 Low2024-01-12
CVE-2023-4812 Incorrect Authorization in GitLab — GitLabCWE-863 7.6 High2024-01-12
CVE-2023-5356 Incorrect Authorization in GitLab — GitLabCWE-863 7.3 High2024-01-12
CVE-2023-7028 Weak Password Recovery Mechanism for Forgotten Password in GitLab — GitLabCWE-640 10.0 Critical2024-01-12
CVE-2023-6955 Missing Authorization in GitLab — GitLabCWE-862 6.6 Medium2024-01-12
CVE-2023-3907 Improper User Management in GitLab — GitLabCWE-286 4.9 Medium2023-12-17
CVE-2023-3904 Improper Validation of Specified Type of Input in GitLab — GitLabCWE-1287 4.3 Medium2023-12-15
CVE-2023-5061 Missing Authorization in GitLab — GitLabCWE-862 4.3 Medium2023-12-15
CVE-2023-5512 Improper Control of Generation of Code ('Code Injection') in GitLab — GitLabCWE-94 4.8 Medium2023-12-15
CVE-2023-6051 Improper Control of Generation of Code ('Code Injection') in GitLab — GitLabCWE-94 5.7 Medium2023-12-15
CVE-2023-6680 Improper Certificate Validation in GitLab — GitLabCWE-295 7.4 High2023-12-15
CVE-2023-3511 Incorrect Authorization in GitLab — GitLabCWE-863 2.0 Low2023-12-15
CVE-2023-5332 Dependency on Vulnerable Third-Party Component in GitLab — GitLabCWE-1395 5.9 Medium2023-12-04
CVE-2023-3443 Incorrect Authorization in GitLab — GitLabCWE-863 3.1 Low2023-12-01
CVE-2023-3964 Incorrect Authorization in GitLab — GitLabCWE-863 4.3 Medium2023-12-01
CVE-2023-3949 Insertion of Sensitive Information Into Sent Data in GitLab — GitLabCWE-201 5.3 Medium2023-12-01
CVE-2023-4317 Incorrect Authorization in GitLab — GitLabCWE-863 4.3 Medium2023-12-01
CVE-2023-4658 Incorrect Authorization in GitLab — GitLabCWE-863 3.1 Low2023-12-01
CVE-2023-4912 Allocation of Resources Without Limits or Throttling in GitLab — GitLabCWE-770 2.6 Low2023-12-01
CVE-2023-5226 Improper Control of Generation of Code ('Code Injection') in GitLab — GitLabCWE-94 4.8 Medium2023-12-01
CVE-2023-6033 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab — GitLabCWE-79 8.7 High2023-12-01
CVE-2023-5995 Incorrect Authorization in GitLab — GitLabCWE-863 4.4 Medium2023-12-01
CVE-2023-4379 Incorrect Authorization in GitLab — GitLabCWE-863 8.1 High2023-11-09
CVE-2023-4700 Missing Authorization in GitLab — GitLabCWE-862 3.5 Low2023-11-06
CVE-2023-5963 Allocation of Resources Without Limits or Throttling in GitLab — GitLabCWE-770 3.1 Low2023-11-06
CVE-2023-3399 Insertion of Sensitive Information Into Sent Data in GitLab — GitLabCWE-201 8.5 High2023-11-06

This page lists every published CVE security advisory associated with GitLab. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.