CVE-2023-6502 - Denial of Service in GitLab Wiki - How Attackers Crashed GitLab with A Simple Wiki Page
In early 2024, security researchers identified a new vulnerability labeled CVE-2023-6502 that affected several versions of GitLab CE/EE. This flaw opened the door for
CVE-2024-4835 - XSS Vulnerability in GitLab Exposes Sensitive User Information
*Published: June 2024 | Severity: High | Affects: GitLab (15.11 before 16.10.6, 16.11 before 16.11.3, 17. before 17..1)*
GitLab is
CVE-2024-2874 - Disrupting GitLab with Crafted Runner Descriptions – An In-Depth Exploit Guide
---
Introduction
Earlier this year, security researchers disclosed a vulnerability in GitLab Community Edition (CE) and Enterprise Edition (EE) that could let malicious actors disrupt
CVE-2024-4597 - Exploiting GitLab EE SAML CSRF to Force Merge Request Approval
GitLab EE (Enterprise Edition) is well-known in the DevOps world, powering workflows and helping teams ship software faster. But with great popularity comes scrutiny—and
CVE-2024-4539 - GitLab API Branch & Tag Filter Denial of Service Explained
In early 2024, the cybersecurity community discovered a high-impact vulnerability cataloged as CVE-2024-4539, affecting certain versions of GitLab's Community Edition (CE) and Enterprise
Episode
00:00:00
00:00:00