Skip to main content
CVE-2019-7176 LOW POC Monitor

An issue was discovered in GitLab Community and Enterprise Edition 8.x (starting in 8.9), 9.x, 10.x, and 11.x before 11.5.9, 11.6.x before 11.6.7, and 11.7.x before 11.7.2. Rated low severity (CVSS 3.7), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

Information Disclosure Gitlab
NVD
CVSS 3.1
3.7
EPSS
0.9%
CVE-2019-5461 LOW POC Monitor

An input validation problem was discovered in the GitHub service integration which could result in an attacker being able to make arbitrary POST requests in a GitLab instance's internal network. Rated low severity (CVSS 3.5), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Gitlab
NVD
CVSS 3.1
3.5
EPSS
1.0%
CVE-2019-16183 LOW PATCH Monitor

In Limesurvey before 3.17.14, admin users can run an integrity check without proper permissions. Rated low severity (CVSS 2.7), this vulnerability is remotely exploitable, low attack complexity. This Incorrect Default Permissions vulnerability could allow attackers to access resources due to overly permissive default settings.

Privilege Escalation Limesurvey
NVD GitHub
CVSS 3.1
2.7
EPSS
0.8%
CVE-2019-16181 LOW PATCH Monitor

In Limesurvey before 3.17.14, admin users can mark other users' notifications as read. Rated low severity (CVSS 2.7), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Limesurvey
NVD GitHub
CVSS 3.1
2.7
EPSS
0.8%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy