Vulnerabilities > Gitlab > Gitlab > 13.8.0

DATE CVE VULNERABILITY TITLE RISK
2021-03-24 CVE-2021-22185 Cross-site Scripting vulnerability in Gitlab
Insufficient input sanitization in wikis in GitLab version 13.8 and up allows an attacker to exploit a stored cross-site scripting vulnerability via a specially-crafted commit to a wiki
network
gitlab CWE-79
3.5
3.5
2021-03-24 CVE-2021-22179 Server-Side Request Forgery (SSRF) vulnerability in Gitlab
A vulnerability was discovered in GitLab versions before 12.2.
network
low complexity
gitlab CWE-918
5.5
5.5
2021-03-24 CVE-2021-22178 Server-Side Request Forgery (SSRF) vulnerability in Gitlab
An issue has been discovered in GitLab affecting all versions starting from 13.2.
network
low complexity
gitlab CWE-918
4.0
4.0
2021-03-24 CVE-2021-22176 Incorrect Authorization vulnerability in Gitlab
An issue has been discovered in GitLab affecting all versions starting with 3.0.1.
network
low complexity
gitlab CWE-863
4.0
4.0
2021-03-02 CVE-2021-22187 Resource Exhaustion vulnerability in Gitlab
An issue has been discovered in GitLab affecting all versions of Gitlab EE/CE before 13.6.7.
network
low complexity
gitlab CWE-400
4.0
4.0