CVE-2018-17450 - GitLab Kubernetes Integration SSRF Vulnerability Exploited – How It Works & What You Need to Know
In this long-read, we’ll dive deep into CVE-2018-17450—an interesting and dangerous Server-Side Request Forgery (SSRF) vulnerability that affected GitLab Community and Enterprise Edition
CVE-2023-1071 - Unpacking the GitLab Epic Issue Removal Vulnerability (with Exploit Example)
On February 23, 2023, a new security issue was quietly patched in GitLab, affecting a wide range of versions from 15.5 to 15.10.
CVE-2023-0326 - Leaked Authorization Headers in GitLab DAST API Scanner – What Happened and How To Stay Safe
If you’re using GitLab’s DAST (Dynamic Application Security Testing) API Scanner—especially if your version falls between 1.6.50 and before 2.
CVE-2023-0050: GitLab Stored Cross-Site Scripting (XSS) Vulnerability in Kroki Diagrams
CVE-2023-0050 refers to a stored cross-site scripting (XSS) vulnerability that has been discovered in GitLab, a popular web-based platform for code sharing, collaboration, and version
CVE-2022-4201 - Exploiting a Blind SSRF in GitLab Runner Configuration (Versions 11.3 to 15.6)
_CVE-2022-4201_ is a blind Server-Side Request Forgery (SSRF) vulnerability in GitLab Community Edition (CE) and Enterprise Edition (EE). Specifically, the bug can be abused when
Episode
00:00:00
00:00:00