Vulnerabilities > Gitlab > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-09-30 | CVE-2020-13296 | Missing Authorization vulnerability in Gitlab An issue has been discovered in GitLab affecting versions >=10.7 <13.0.14, >=13.1.0 <13.1.8, >=13.2.0 <13.2.6. | 8.8 |
| 2020-09-14 | CVE-2020-13315 | Unspecified vulnerability in Gitlab A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. | 7.5 |
| 2020-09-14 | CVE-2020-13309 | Server-Side Request Forgery (SSRF) vulnerability in Gitlab A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. | 8.8 |
| 2020-09-14 | CVE-2020-13306 | Allocation of Resources Without Limits or Throttling vulnerability in Gitlab A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. | 7.5 |
| 2020-09-14 | CVE-2020-13304 | Use of Insufficiently Random Values vulnerability in Gitlab A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. | 7.2 |
| 2020-09-14 | CVE-2020-13302 | Insufficient Session Expiration vulnerability in Gitlab A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. | 7.2 |
| 2020-09-14 | CVE-2020-13318 | Unspecified vulnerability in Gitlab A vulnerability was discovered in GitLab versions before 13.0.12, 13.1.10, 13.2.8 and 13.3.4. | 7.3 |
| 2020-09-14 | CVE-2020-13299 | Insufficient Session Expiration vulnerability in Gitlab A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. | 8.1 |
| 2020-08-12 | CVE-2020-13291 | Unspecified vulnerability in Gitlab 13.2.0/13.2.1/13.2.2 In GitLab before 13.2.3, project sharing could temporarily allow too permissive access. | 8.1 |
| 2020-08-12 | CVE-2020-13290 | Improper Authentication vulnerability in Gitlab In GitLab before 13.0.12, 13.1.6, and 13.2.3, improper access control was used on the Applications page | 7.2 |