Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (1220 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2019-20143 1 Gitlab 1 Gitlab 2024-11-21 5.3 Medium
An issue was discovered in GitLab Community Edition (CE) and Enterprise Edition (EE) 12.6. It has Incorrect Access Control.
CVE-2019-20142 1 Gitlab 1 Gitlab 2024-11-21 4.3 Medium
An issue was discovered in GitLab Community Edition (CE) and Enterprise Edition (EE) 12.3 through 12.6.1. It allows Denial of Service.
CVE-2019-19629 1 Gitlab 1 Gitlab 2024-11-21 7.5 High
In GitLab EE 10.5 through 12.5.3, 12.4.5, and 12.3.8, when transferring a public project to a private group, private code would be disclosed via the Group Search API provided by the Elasticsearch integration.
CVE-2019-19628 1 Gitlab 1 Gitlab 2024-11-21 9.8 Critical
In GitLab EE 11.3 through 12.5.3, 12.4.5, and 12.3.8, insufficient parameter sanitization for the Maven package registry could lead to privilege escalation and remote code execution vulnerabilities under certain conditions.
CVE-2019-19314 1 Gitlab 1 Gitlab 2024-11-21 7.5 High
GitLab EE 8.4 through 12.5, 12.4.3, and 12.3.6 stored several tokens in plaintext.
CVE-2019-19313 1 Gitlab 1 Gitlab 2024-11-21 7.5 High
GitLab EE 12.3 through 12.5, 12.4.3, and 12.3.6 allows Denial of Service. Certain characters were making it impossible to create, edit, or view issues and commits.
CVE-2019-19312 1 Gitlab 1 Gitlab 2024-11-21 5.8 Medium
GitLab EE 8.14 through 12.5, 12.4.3, and 12.3.6 has Incorrect Access Control. After a project changed to private, previously forked repositories were still able to get information about the private project through the API.
CVE-2019-19311 1 Gitlab 1 Gitlab 2024-11-21 5.4 Medium
GitLab EE 8.14 through 12.5, 12.4.3, and 12.3.6 allows XSS in group and profile fields.
CVE-2019-19310 1 Gitlab 1 Gitlab 2024-11-21 4.9 Medium
GitLab Enterprise Edition (EE) 9.0 and later through 12.5 allows Information Disclosure.
CVE-2019-19309 1 Gitlab 1 Gitlab 2024-11-21 4.3 Medium
GitLab Enterprise Edition (EE) 8.90 and later through 12.5 has Incorrect Access Control.
CVE-2019-19263 1 Gitlab 1 Gitlab 2024-11-21 4.3 Medium
GitLab Enterprise Edition (EE) 8.2 and later through 12.5 has Insecure Permissions.
CVE-2019-19262 1 Gitlab 1 Gitlab 2024-11-21 4.3 Medium
GitLab Enterprise Edition (EE) 11.9 and later through 12.5 has Insecure Permissions.
CVE-2019-19261 1 Gitlab 1 Gitlab 2024-11-21 8.8 High
GitLab Enterprise Edition (EE) 6.7 and later through 12.5 allows SSRF.
CVE-2019-19260 1 Gitlab 1 Gitlab 2024-11-21 5.4 Medium
GitLab Community Edition (CE) and Enterprise Edition (EE) through 12.5 has Incorrect Access Control (issue 2 of 2).
CVE-2019-19259 1 Gitlab 1 Gitlab 2024-11-21 4.3 Medium
GitLab Enterprise Edition (EE) 11.3 and later through 12.5 allows an Insecure Direct Object Reference (IDOR).
CVE-2019-19258 1 Gitlab 1 Gitlab 2024-11-21 5.3 Medium
GitLab Enterprise Edition (EE) 10.8 and later through 12.5 has Incorrect Access Control.
CVE-2019-19257 1 Gitlab 1 Gitlab 2024-11-21 5.3 Medium
GitLab Community Edition (CE) and Enterprise Edition (EE) through 12.5 has Incorrect Access Control (issue 1 of 2).
CVE-2019-19256 1 Gitlab 1 Gitlab 2024-11-21 5.3 Medium
GitLab Enterprise Edition (EE) 12.2 and later through 12.5 has Incorrect Access Control.
CVE-2019-19255 1 Gitlab 1 Gitlab 2024-11-21 4.3 Medium
GitLab Enterprise Edition (EE) 12.3 and later through 12.5 has Incorrect Access Control.
CVE-2019-19254 1 Gitlab 1 Gitlab 2024-11-21 5.3 Medium
GitLab Community Edition (CE) and Enterprise Edition (EE). 9.6 and later through 12.5 has Incorrect Access Control.