Vulnerabilities > Gitlab > Gitlab > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-04-29 | CVE-2020-12276 | Cross-site Scripting vulnerability in Gitlab GitLab 9.5.9 through 12.9 is vulnerable to stored XSS in an admin notification feature. | 3.5 |
| 2020-03-10 | CVE-2019-12445 | Cross-site Scripting vulnerability in Gitlab An issue was discovered in GitLab Community and Enterprise Edition 8.4 through 11.11. | 3.5 |
| 2020-01-13 | CVE-2020-5197 | Incorrect Authorization vulnerability in Gitlab An issue was discovered in GitLab Community Edition (CE) and Enterprise Edition (EE) 5.1 through 12.6.1. | 3.5 |
| 2020-01-03 | CVE-2019-19311 | Cross-site Scripting vulnerability in Gitlab GitLab EE 8.14 through 12.5, 12.4.3, and 12.3.6 allows XSS in group and profile fields. | 3.5 |
| 2019-12-30 | CVE-2018-20490 | Cross-site Scripting vulnerability in Gitlab An issue was discovered in GitLab Community and Enterprise Edition 11.2.x through 11.4.x before 11.4.13, 11.5.x before 11.5.6, and 11.6.x before 11.6.1. | 3.5 |
| 2019-12-30 | CVE-2018-20491 | Cross-site Scripting vulnerability in Gitlab An issue was discovered in GitLab Enterprise Edition 11.3.x and 11.4.x before 11.4.13, 11.5.x before 11.5.6, and 11.6.x before 11.6.1. | 3.5 |
| 2019-12-30 | CVE-2018-20496 | Cross-site Scripting vulnerability in Gitlab An issue was discovered in GitLab Community and Enterprise Edition 11.2.x through 11.4.x before 11.4.13, 11.5.x before 11.5.6, and 11.6.x before 11.6.1. | 3.5 |
| 2019-09-09 | CVE-2019-11546 | Race Condition vulnerability in Gitlab An issue was discovered in GitLab Community and Enterprise Edition before 11.8.9, 11.9.x before 11.9.10, and 11.10.x before 11.10.2. | 3.5 |
| 2019-09-09 | CVE-2019-11548 | Cross-site Scripting vulnerability in Gitlab An issue was discovered in GitLab Community and Enterprise Edition before 11.8.9. | 3.5 |
| 2019-07-10 | CVE-2018-19579 | Cross-site Scripting vulnerability in Gitlab 11.5.0 GitLab EE version 11.5 is vulnerable to a persistent XSS vulnerability in the Operations page. | 3.5 |