Vulnerabilities > Gitlab > Gitlab > 10.7.6

DATE CVE VULNERABILITY TITLE RISK
2018-12-04 CVE-2018-18646 Server-Side Request Forgery (SSRF) vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition before 11.2.7, 11.3.x before 11.3.8, and 11.4.x before 11.4.3.
network
low complexity
gitlab CWE-918
6.5
6.5
2018-12-04 CVE-2018-18645 Information Exposure vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition before 11.2.7, 11.3.x before 11.3.8, and 11.4.x before 11.4.3.
network
gitlab CWE-200
4.3
4.3
2018-12-04 CVE-2018-18642 Cross-site Scripting vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition before 11.2.7, 11.3.x before 11.3.8, and 11.4.x before 11.4.3.
network
gitlab CWE-79
4.3
4.3
2018-12-04 CVE-2018-18641 Cleartext Storage of Sensitive Information vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition before 11.2.7, 11.3.x before 11.3.8, and 11.4.x before 11.4.3.
network
low complexity
gitlab CWE-312
5.0
5.0
2018-12-04 CVE-2018-18640 Information Exposure vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition before 11.2.7, 11.3.x before 11.3.8, and 11.4.x before 11.4.3.
network
low complexity
gitlab CWE-200
4.0
4.0
2018-10-03 CVE-2018-16051 Information Exposure vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition before 11.0.6, 11.1.x before 11.1.5, and 11.2.x before 11.2.2.
network
low complexity
gitlab CWE-200
4.0
4.0
2018-10-03 CVE-2018-16050 Cross-site Scripting vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition 11.1.x before 11.1.5 and 11.2.x before 11.2.2.
network
gitlab CWE-79
4.3
4.3
2018-10-03 CVE-2018-16049 Information Exposure Through Log Files vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition before 11.0.6, 11.1.x before 11.1.5, and 11.2.x before 11.2.2.
network
low complexity
gitlab CWE-532
5.0
5.0
2018-10-03 CVE-2018-16048 Missing Authorization vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition before 11.0.6, 11.1.x before 11.1.5, and 11.2.x before 11.2.2.
network
low complexity
gitlab CWE-862
4.0
4.0
2018-07-27 CVE-2018-14606 Cross-site Scripting vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition before 10.8.7, 11.0.x before 11.0.5, and 11.1.x before 11.1.2.
network
gitlab CWE-79
3.5
3.5