Vulnerabilities > Gitlab > Low

DATE CVE VULNERABILITY TITLE RISK
2019-12-30 CVE-2018-20490 Cross-site Scripting vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition 11.2.x through 11.4.x before 11.4.13, 11.5.x before 11.5.6, and 11.6.x before 11.6.1.
network
gitlab CWE-79
3.5
3.5
2019-12-30 CVE-2018-20491 Cross-site Scripting vulnerability in Gitlab
An issue was discovered in GitLab Enterprise Edition 11.3.x and 11.4.x before 11.4.13, 11.5.x before 11.5.6, and 11.6.x before 11.6.1.
network
gitlab CWE-79
3.5
3.5
2019-12-30 CVE-2018-20496 Cross-site Scripting vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition 11.2.x through 11.4.x before 11.4.13, 11.5.x before 11.5.6, and 11.6.x before 11.6.1.
network
gitlab CWE-79
3.5
3.5
2019-09-09 CVE-2019-11546 Race Condition vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition before 11.8.9, 11.9.x before 11.9.10, and 11.10.x before 11.10.2.
network
gitlab CWE-362
3.5
3.5
2019-09-09 CVE-2019-11548 Cross-site Scripting vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition before 11.8.9.
network
gitlab CWE-79
3.5
3.5
2019-07-10 CVE-2018-19579 Cross-site Scripting vulnerability in Gitlab 11.5.0
GitLab EE version 11.5 is vulnerable to a persistent XSS vulnerability in the Operations page.
network
gitlab CWE-79
3.5
3.5
2019-05-29 CVE-2019-9221 Improper Input Validation vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1.
local
low complexity
gitlab CWE-20
2.1
2.1
2019-05-15 CVE-2019-10111 Cross-site Scripting vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition before 11.7.8, 11.8.x before 11.8.4, and 11.9.x before 11.9.2.
network
gitlab CWE-79
3.5
3.5
2018-08-03 CVE-2018-12605 Cross-site Scripting vulnerability in Gitlab
An issue was discovered in GitLab Community Edition and Enterprise Edition 10.7.x before 10.7.6.
network
gitlab CWE-79
3.5
3.5
2018-08-03 CVE-2018-12606 Cross-site Scripting vulnerability in Gitlab
An issue was discovered in GitLab Community Edition and Enterprise Edition before 10.7.6, 10.8.x before 10.8.5, and 11.x before 11.0.1.
network
gitlab CWE-79
3.5
3.5