| CVE-2021-31799 |
AVG-2125 |
Medium |
Yes |
Arbitrary command execution |
RDoc before version 6.3.1, as bundled with Ruby before version 2.7.4 and 2.6.8 as well as GitLab before version 14.0.2, used to call Kernel#open to open a... |
| CVE-2021-28965 |
AVG-1822 |
Critical |
Yes |
Incorrect calculation |
When parsing and serializing a crafted XML document, the REXML gem (including the one bundled with Ruby) can create a wrong XML document whose structure is... |
| CVE-2021-22904 |
AVG-2090 |
Low |
Yes |
Denial of service |
There is a possible denial of service (DoS) vulnerability in the Token Authentication logic in Action Controller before versions 6.1.3.2, 6.0.3.7, 5.2.4.6... |
| CVE-2021-22903 |
AVG-1919 |
Medium |
Yes |
Open redirect |
There is a possible Open Redirect Vulnerability in Action Pack 6.1 before version 6.1.3.2. Specially crafted Host headers in combination with certain... |
| CVE-2021-22902 |
AVG-2090 |
Low |
Yes |
Denial of service |
There is a possible Denial of Service vulnerability in Action Dispatch before version 6 before 6.0.3.7 and 6.1.0.2. Carefully crafted Accept headers can... |
| CVE-2021-22885 |
AVG-2090 |
Medium |
Yes |
Information disclosure |
There is a possible information disclosure/unintended method execution vulnerability in Action Pack before versions 6.1.3.2, 6.0.3.7, 5.2.4.6 and 5.2.6 when... |
| CVE-2021-22233 |
AVG-2137 |
Medium |
Yes |
Information disclosure |
An information disclosure vulnerability in GitLab EE versions 13.10 and later before 14.0.2 allowed a user to read project details. |
| CVE-2021-22232 |
AVG-2125 |
Low |
Yes |
Content spoofing |
HTML injection was possible via the full name field before version 14.0.2 in GitLab CE. |
| CVE-2021-22231 |
AVG-2125 |
Low |
Yes |
Denial of service |
A denial of service on the user's profile page is found starting with GitLab CE/EE 8.0 and before 14.0.2 that allows an attacker to reject access to their... |
| CVE-2021-22230 |
AVG-2125 |
Medium |
Yes |
Arbitrary code execution |
Improper code rendering while rendering merge requests could be exploited to submit malicious code. This vulnerability affects GitLab CE/EE 9.3 and later up... |
| CVE-2021-22229 |
AVG-2125 |
Medium |
Yes |
Information disclosure |
An issue has been discovered in GitLab CE/EE affecting all versions starting with 12.8 and before 14.0.2. Under a special condition it was possible to... |
| CVE-2021-22228 |
AVG-2125 |
Medium |
Yes |
Information disclosure |
An issue has been discovered in GitLab affecting all versions before 14.0.2. Improper access control allows unauthorised users to access project details... |
| CVE-2021-22227 |
AVG-2125 |
Medium |
Yes |
Cross-site scripting |
A reflected cross-site script vulnerability in GitLab before version 14.0.2 allowed an attacker to send a malicious link to a victim and trigger actions on... |
| CVE-2021-22226 |
AVG-2125 |
Medium |
Yes |
Access restriction bypass |
Under certain conditions, some users were able to push to protected branches that were restricted to deploy keys in GitLab CE/EE since version 13.9 and... |
| CVE-2021-22225 |
AVG-2125 |
Medium |
Yes |
Cross-site scripting |
Insufficient input sanitization in markdown in GitLab version 13.11 and up before version 14.0.2 allows an attacker to exploit a stored cross-site scripting... |
| CVE-2021-22224 |
AVG-2125 |
High |
Yes |
Cross-site request forgery |
A cross-site request forgery vulnerability in the GraphQL API in GitLab since version 13.12 and before version 14.0.2 allowed an attacker to call mutations... |
| CVE-2021-22223 |
AVG-2125 |
Medium |
Yes |
Cross-site scripting |
Client-Side code injection through a Feature Flag name in GitLab CE/EE starting with 11.9 and before version 14.0.2 allows a specially crafted feature flag... |
| CVE-2021-22221 |
AVG-2023 |
Medium |
Yes |
Authentication bypass |
An issue has been discovered in GitLab affecting all versions starting from 12.9.0 before 13.12.2. Insufficient expired password validation in various... |
| CVE-2021-22220 |
AVG-2023 |
Medium |
Yes |
Cross-site scripting |
An issue has been discovered in GitLab affecting all versions starting with 13.10 before 13.12.2. GitLab was vulnerable to a stored cross- site scripting... |
| CVE-2021-22219 |
AVG-2023 |
Medium |
Yes |
Information disclosure |
GitLab CE/EE since version 9.5 before 13.12.2 allows a high privilege user to obtain sensitive information from log files because the sensitive information... |
| CVE-2021-22218 |
AVG-2023 |
Low |
Yes |
Content spoofing |
All versions of GitLab CE/EE starting with 12.8 before 13.12.2 were affected by an issue in the handling of x509 certificates that could be used to spoof... |
| CVE-2021-22217 |
AVG-2023 |
Medium |
Yes |
Denial of service |
A denial of service vulnerability in all versions of GitLab CE/EE before 13.12.2 allows an attacker to cause uncontrolled resource consumption with a... |
| CVE-2021-22216 |
AVG-2023 |
Medium |
Yes |
Denial of service |
A denial of service vulnerability in all versions of GitLab CE/EE before 13.12.2 allows an attacker to cause uncontrolled resource consumption with a very... |
| CVE-2021-22215 |
AVG-2045 |
High |
Yes |
Information disclosure |
An information disclosure vulnerability in GitLab EE versions 13.11 and later before 13.12.2 allowed a project owner to leak information about the members'... |
| CVE-2021-22214 |
AVG-2023 |
Medium |
Yes |
Access restriction bypass |
When requests to the internal network for webhooks are enabled, a server-side request forgery vulnerability in GitLab CE/EE affecting all versions starting... |
| CVE-2021-22213 |
AVG-2023 |
High |
Yes |
Information disclosure |
A cross-site leak vulnerability in the OAuth flow of all versions of GitLab CE/EE since 7.10 before 13.12.2 allowed an attacker to leak an OAuth access... |
| CVE-2021-22211 |
AVG-1888 |
Low |
Yes |
Access restriction bypass |
An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.7. GitLab Dependency Proxy, under certain circumstances, can... |
| CVE-2021-22210 |
AVG-1888 |
Medium |
Yes |
Denial of service |
An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.2. When querying the repository branches through API, GitLab was... |
| CVE-2021-22209 |
AVG-1888 |
High |
Yes |
Insufficient validation |
An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.8. GitLab was not properly validating authorisation tokens which... |
| CVE-2021-22208 |
AVG-1888 |
Medium |
Yes |
Access restriction bypass |
An issue has been discovered in GitLab affecting versions prior to 13.5. Improper permission check could allow the change of timestamp for issue creation or... |
| CVE-2021-22206 |
AVG-1888 |
Medium |
Yes |
Information disclosure |
An issue has been discovered in GitLab affecting all versions prior to 11.6. Pull mirror credentials were exposed and could allow other maintainers to view... |
| CVE-2021-22205 |
AVG-1822 |
Critical |
Yes |
Arbitrary code execution |
An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.9. GitLab was not properly validating image files that is passed to a... |
| CVE-2021-22203 |
AVG-1770 |
High |
Yes |
Arbitrary filesystem access |
An issue has been discovered in GitLab CE/EE affecting all versions starting with 13.7.9. A specially crafted Wiki page allowed attackers to read arbitrary... |
| CVE-2021-22202 |
AVG-1770 |
Low |
Yes |
Cross-site request forgery |
An issue has been discovered in GitLab CE/EE affecting all previous versions. If the victim is an admin, it was possible to issue a cross- site request... |
| CVE-2021-22201 |
AVG-1770 |
Critical |
Yes |
Directory traversal |
An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.9. A specially crafted import file could read files on the server. The... |
| CVE-2021-22200 |
AVG-1770 |
Medium |
Yes |
Information disclosure |
An issue has been discovered in GitLab CE/EE affecting all versions starting with 12.6. Under a special condition it was possible to access data of an... |
| CVE-2021-22199 |
AVG-1770 |
Low |
Yes |
Cross-site scripting |
An issue has been discovered in GitLab affecting all versions starting with 12.9. GitLab was vulnerable to a stored cross-site scripting (XSS) attack if... |
| CVE-2021-22198 |
AVG-1770 |
Medium |
Yes |
Access restriction bypass |
An issue has been discovered in GitLab CE/EE affecting all versions from 13.8 and above allowing an authenticated user to delete incident metric images of... |
| CVE-2021-22197 |
AVG-1770 |
Low |
Yes |
Denial of service |
An issue has been discovered in GitLab CE/EE affecting all versions starting from 10.6 where an infinite loop exist when an authenticated user with specific... |
| CVE-2021-22196 |
AVG-1770 |
Medium |
Yes |
Cross-site scripting |
An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.4. It was possible to exploit a stored cross-site- scripting in merge... |
| CVE-2021-22192 |
AVG-1710 |
Critical |
Yes |
Arbitrary code execution |
An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.2 allowing unauthorized authenticated users to execute arbitrary code... |
| CVE-2021-22186 |
AVG-1648 |
Medium |
Yes |
Access restriction bypass |
An authorization issue in GitLab CE/EE version 9.4 and up allowed a group maintainer to modify group CI/CD variables which should be restricted to group... |
| CVE-2021-22185 |
AVG-1648 |
Medium |
Yes |
Cross-site scripting |
Insufficient input sanitization in wikis in GitLab version 13.8 and up allows an attacker to exploit a stored cross-site scripting vulnerability via a... |
| CVE-2021-22181 |
AVG-2023 |
High |
Yes |
Denial of service |
A denial of service vulnerability in GitLab CE/EE affecting all versions since 11.8 before 13.12.2 allows an attacker to create a recursive pipeline... |
| CVE-2021-22172 |
AVG-1521 |
Medium |
Yes |
Information disclosure |
Improper authorization in GitLab 12.8+ allows a guest user in a private project to view tag data that should be inaccessible on the releases page. The issue... |
| CVE-2021-22171 |
AVG-1416 |
High |
Yes |
Authentication bypass |
Insufficient validation of authentication parameters in GitLab Pages for GitLab 11.5+ would allow stealing a user's API access token. The issue is mitigated... |
| CVE-2021-22169 |
AVG-1522 |
Medium |
Yes |
Information disclosure |
An issue was identified in GitLab EE 13.4 or later which could disclose internal IP address via error messages. It is fixed in versions 13.8.2, 13.7.6 and 13.6.6. |
| CVE-2021-22168 |
AVG-1416 |
Medium |
Yes |
Denial of service |
A regular expression denial of service issue has been discovered in the NuGet API affecting all versions of GitLab starting from version 12.8. The issue is... |
| CVE-2021-22167 |
AVG-1416 |
Medium |
Yes |
Information disclosure |
An issue has been discovered in GitLab affecting all versions starting from 12.1. Incorrect headers within a specific project page allow attackers to have... |
| CVE-2021-22166 |
AVG-1416 |
Medium |
Yes |
Denial of service |
An attacker could cause a Prometheus denial of service in GitLab 13.7+ by sending an HTTP request with a malformed method. The issue is mitigated in GitLab... |
| CVE-2020-26417 |
AVG-1333 |
Medium |
Yes |
Information disclosure |
Information disclosure via GraphQL in GitLab CE/EE 13.1 and later exposes private group and project membership. This affects versions >=13.6 to <13.6.2,... |
| CVE-2020-26416 |
AVG-1347 |
Medium |
Yes |
Information disclosure |
Information disclosure in Advanced Search component of GitLab EE starting from 8.4 results in exposure of search terms via Rails logs. This affects versions... |
| CVE-2020-26415 |
AVG-1333 |
Medium |
Yes |
Information disclosure |
An issue has been discovered in GitLab affecting all versions starting from 12.2 before 13.6.2, all versions starting from 12.2 before 13.5.5, all versions... |
| CVE-2020-26414 |
AVG-1416 |
Medium |
Yes |
Denial of service |
An issue has been discovered in GitLab affecting all versions starting from 12.4. The regex used for package names is written in a way that makes execution... |
| CVE-2020-26413 |
AVG-1333 |
Medium |
Yes |
Information disclosure |
An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.4 before 13.6.2. Information disclosure via GraphQL starting in GitLab... |
| CVE-2020-26412 |
AVG-1347 |
Low |
Yes |
Information disclosure |
Removed group members were able to use the To-Do functionality to retrieve updated information on confidential epics starting in GitLab EE 13.2 before 13.6.2. |
| CVE-2020-26411 |
AVG-1333 |
Medium |
Yes |
Denial of service |
A potential denial of service vulnerability was discovered in all versions of Gitlab starting from 13.4.x (>=13.4 to <13.4.7, >=13.5 to <13.5.5, and >=13.6... |
| CVE-2020-26409 |
AVG-1333 |
Medium |
Yes |
Denial of service |
A denial of service vulnerability exists in Gitlab CE/EE >=10.3, <13.4.7,>=13.5, <13.5.5,>=13.6, <13.6.2 that allows an attacker to trigger uncontrolled... |
| CVE-2020-26408 |
AVG-1333 |
Medium |
Yes |
Information disclosure |
A limited information disclosure vulnerability exists in Gitlab CE/EE from >= 12.2 to <13.4.7, >=13.5 to <13.5.5, and >=13.6 to <13.6.2 that allows an... |
| CVE-2020-26407 |
AVG-1333 |
Medium |
Yes |
Cross-site scripting |
A cross-site scripting vulnerability exists in Gitlab CE/EE from 12.4 before 13.4.7, 13.5 before 13.5.5, and 13.6 before 13.6.2 that allows an attacker to... |
| CVE-2020-13357 |
AVG-1333 |
Medium |
Yes |
Access restriction bypass |
An issue was discovered in Gitlab CE/EE versions >= 13.1 to <13.4.7, >= 13.5 to <13.5.5, and >= 13.6 to <13.6.2 allowed an unauthorized user to access the... |
| CVE-2018-18843 |
AVG-802 |
High |
Yes |
Cross-site request forgery |
The GitLab Kubernetes integration was vulnerable to a SSRF issue which could allow an attacker to make requests to access any internal URLs |
| CVE-2018-18649 |
AVG-794 |
Critical |
Yes |
Arbitrary code execution |
A security issue has been found in gitlab versions prior to 11.4.3, where the wiki API contained an input validation issue which resulted in remote code execution. |
| CVE-2018-18648 |
AVG-794 |
Low |
Yes |
Information disclosure |
A security issue has been found in gitlab versions prior to 11.4.3, where a JSON endpoint was disclosing Gem version information which could result in an... |
| CVE-2018-18647 |
AVG-802 |
Medium |
Yes |
Access restriction bypass |
A security issue has been found in gitlab versions prior to 11.4.3, where the protected_branches API was vulnerable to an issue which allowed an... |
| CVE-2018-18646 |
AVG-794 |
Medium |
Yes |
Cross-site request forgery |
A security issue has been found in gitlab versions prior to 11.4.3, where the Hipchat integration was vulnerable to a SSRF issue which allowed an attacker... |
| CVE-2018-18645 |
AVG-794 |
Low |
Yes |
Information disclosure |
A security issue has been found in gitlab versions prior to 11.4.3, where when replying to an issue through email, with the GitLab email footer included, a... |
| CVE-2018-18644 |
AVG-802 |
Medium |
Yes |
Information disclosure |
A security issue has been found in gitlab versions prior to 11.4.3, where the Prometheus integration was vulnerable to an indirect object reference issue... |
| CVE-2018-18643 |
AVG-794 |
Medium |
Yes |
Cross-site scripting |
A security issue has been found in gitlab versions prior to 11.4.3, where the fragment identifier (hash) of several pages contained a lack of input... |
| CVE-2018-18642 |
AVG-802 |
Medium |
Yes |
Cross-site scripting |
A security issue has been found in gitlab versions prior to 11.4.3, where the license management and security reports pages contained a lack of input... |
| CVE-2018-18641 |
AVG-794 |
Low |
Yes |
Information disclosure |
A security issue has been found in gitlab versions prior to 11.4.3, where personal access tokens were being stored unencrypted as plain text in the database... |
| CVE-2018-18640 |
AVG-794 |
Medium |
No |
Information disclosure |
A security issue has been found in gitlab versions prior to 11.4.3, where private project pages had inadequate cache control, which resulted in unauthorized... |
| CVE-2018-12607 |
AVG-726 |
Medium |
Yes |
Cross-site scripting |
The charts feature contained a persistent XSS issue due to a lack of output encoding. |
| CVE-2018-12606 |
AVG-726 |
Medium |
Yes |
Cross-site scripting |
The wiki contains a persistent XSS issue due to a lack of output encoding affecting a specific markdown feature. |
| CVE-2018-3740 |
AVG-726 |
Medium |
Yes |
Insufficient validation |
A specially crafted HTML fragment can cause Sanitize gem for Ruby to allow non-whitelisted attributes to be used on a whitelisted HTML element. |