Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

GitLab — Vulnerabilities & Security Advisories 1012

Browse all 1012 CVE security advisories affecting GitLab. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by GitLab:GitLabGitLab CE/EEGitLab Community and Enterprise EditionsGitLab EEGitLab Runnergitlab-vscode-extensionDASTGitLab Community Edition and GitLab Enterprise EditionGitalyGitLab PagesDAST API scannerGitLab DAST API scannerGitLab VSCode ForkGitLab Language ServerGitLab AI Gateway
CVE IDTitleCVSSSeverityPublished
CVE-2023-3915 Incorrect Execution-Assigned Permissions in GitLab — GitLabCWE-279 6.5 Medium2023-09-01
CVE-2023-4522 Improper Validation of Specified Type of Input in GitLab — GitLabCWE-1287 4.3 Medium2023-08-30
CVE-2023-4002 Insertion of Sensitive Information Into Sent Data in GitLab — GitLabCWE-201 5.3 Medium2023-08-04
CVE-2023-4008 Incorrect Ownership Assignment in GitLab — GitLabCWE-708 5.3 Medium2023-08-03
CVE-2023-3932 Incorrect User Management in GitLab — GitLabCWE-286 5.3 High2023-08-03
CVE-2023-2022 Missing Authorization in GitLab — GitLabCWE-262 4.3 Medium2023-08-02
CVE-2023-3401 Improper Control of Generation of Code ('Code Injection') in GitLab — GitLabCWE-94 4.8 Medium2023-08-02
CVE-2023-4011 Allocation of Resources Without Limits or Throttling in GitLab — GitLabCWE-770 4.3 Medium2023-08-02
CVE-2023-3500 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab — GitLabCWE-79 4.8 Medium2023-08-02
CVE-2023-3900 Improper Validation of Specified Type of Input in GitLab — GitLabCWE-1287 4.3 Medium2023-08-02
CVE-2023-3993 Insertion of Sensitive Information into Log File in GitLab — GitLabCWE-532 4.9 Medium2023-08-02
CVE-2023-3994 Inefficient Regular Expression Complexity in GitLab — GitLabCWE-1333 7.5 High2023-08-02
CVE-2023-0632 Inefficient Regular Expression Complexity in GitLab — GitLabCWE-1333 6.5 Medium2023-08-01
CVE-2023-1210 Generation of Error Message Containing Sensitive Information in GitLab — GitLabCWE-209 3.1 Low2023-08-01
CVE-2023-2164 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab — GitLabCWE-79 5.4 Medium2023-08-01
CVE-2023-3364 Inefficient Regular Expression Complexity in GitLab — GitLabCWE-1333 7.5 High2023-08-01
CVE-2023-3385 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in GitLab — GitLabCWE-22 6.3 Medium2023-08-01
CVE-2023-1401 Insertion of Sensitive Information Into Sent Data in GitLab — GitLabCWE-201 5.0 Medium2023-07-26
CVE-2023-3102 Insertion of Sensitive Information Into Sent Data in GitLab — GitLabCWE-201 5.3 Medium2023-07-21
CVE-2023-3484 Incorrect Authorization in GitLab — GitLabCWE-863 8.0 High2023-07-21
CVE-2023-2620 Insertion of Sensitive Information Into Sent Data in GitLab — GitLabCWE-201 5.5 Medium2023-07-13
CVE-2023-2576 Incorrect Authorization in GitLab — GitLabCWE-863 4.3 Medium2023-07-13
CVE-2023-3362 Generation of Error Message Containing Sensitive Information in GitLab — GitLabCWE-209 5.3 Medium2023-07-13
CVE-2023-3363 Insertion of Sensitive Information into Log File in GitLab — GitLabCWE-532 3.9 Low2023-07-13
CVE-2023-3444 Incorrect Authorization in GitLab — GitLabCWE-863 5.7 Medium2023-07-13
CVE-2023-3424 Inefficient Regular Expression Complexity in GitLab — GitLabCWE-1333 7.5 High2023-07-13
CVE-2023-2200 Improper Encoding or Escaping of Output in GitLab — GitLabCWE-116 4.1 Medium2023-07-13
CVE-2023-2190 Authorization Bypass Through User-Controlled Key in GitLab — GitLabCWE-639 6.5 Medium2023-07-13
CVE-2023-1936 Exposure of Private Personal Information to an Unauthorized Actor in GitLab — GitLabCWE-359 3.5 Low2023-07-11
CVE-2023-2232 GitLab 安全漏洞 — GitLab 6.5 Medium2023-06-28

This page lists every published CVE security advisory associated with GitLab. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.