Vulnerabilities > Gitlab > Medium

DATE CVE VULNERABILITY TITLE RISK
2018-12-04 CVE-2018-17975 Information Exposure vulnerability in Gitlab
An issue was discovered in GitLab Community Edition 11.x before 11.1.8, 11.2.x before 11.2.5, and 11.3.x before 11.3.2.
network
low complexity
gitlab CWE-200
5.3
5.3
2018-10-03 CVE-2018-16051 Information Exposure vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition before 11.0.6, 11.1.x before 11.1.5, and 11.2.x before 11.2.2.
network
low complexity
gitlab CWE-200
6.5
6.5
2018-10-03 CVE-2018-16050 Cross-site Scripting vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition 11.1.x before 11.1.5 and 11.2.x before 11.2.2.
network
low complexity
gitlab CWE-79
6.1
6.1
2018-10-03 CVE-2018-16048 Missing Authorization vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition before 11.0.6, 11.1.x before 11.1.5, and 11.2.x before 11.2.2.
network
low complexity
gitlab CWE-862
6.5
6.5
2018-08-03 CVE-2018-12607 Cross-site Scripting vulnerability in Gitlab
An issue was discovered in GitLab Community Edition and Enterprise Edition before 10.7.6, 10.8.x before 10.8.5, and 11.x before 11.0.1.
network
low complexity
gitlab CWE-79
5.4
5.4
2018-08-03 CVE-2018-12606 Cross-site Scripting vulnerability in Gitlab
An issue was discovered in GitLab Community Edition and Enterprise Edition before 10.7.6, 10.8.x before 10.8.5, and 11.x before 11.0.1.
network
low complexity
gitlab CWE-79
5.4
5.4
2018-08-03 CVE-2018-12605 Cross-site Scripting vulnerability in Gitlab
An issue was discovered in GitLab Community Edition and Enterprise Edition 10.7.x before 10.7.6.
network
low complexity
gitlab CWE-79
5.4
5.4
2018-07-27 CVE-2018-14606 Cross-site Scripting vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition before 10.8.7, 11.0.x before 11.0.5, and 11.1.x before 11.1.2.
network
low complexity
gitlab CWE-79
5.4
5.4
2018-07-27 CVE-2018-14605 Cross-site Scripting vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition before 10.8.7, 11.0.x before 11.0.5, and 11.1.x before 11.1.2.
network
low complexity
gitlab CWE-79
5.4
5.4
2018-07-27 CVE-2018-14604 Cross-site Scripting vulnerability in Gitlab
An issue was discovered in GitLab Community and Enterprise Edition before 10.8.7, 11.0.x before 11.0.5, and 11.1.x before 11.1.2.
network
low complexity
gitlab CWE-79
6.1
6.1