FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-19 20:48:44 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
8a4aba2d-f33e-11e8-9416-001b217b3468	Gitlab -- Multiple vulnerabilities Gitlab reports: View Names of Private Groups Persistent XSS in Environments SSRF in Prometheus integration Unauthorized Promotion of Milestones Exposure of Confidential Issue Title Persisent XSS in Markdown Fields via Mermaid Script Persistent XSS in Markdown Fields via Unrecognized HTML Tags Symlink Race Condition in Pages Unauthorized Changes by Guest User in Issues Unauthorized Comments on Locked Issues Improper Enforcement of Token Scope CRLF Injection in Project Mirroring XSS in OAuth Authorization SSRF in Webhooks Send Email on Email Address Change Workhorse Logs Contained Tokens Unauthorized Publishing of Draft Comments Guest Can Set Weight of a New Issue Disclosure of Private Group's Members and Milestones Persisent XSS in Operations Reporter Can View Operations Page Discovery 2018-11-28 Entry 2018-11-28 gitlab-ce ge 11.5.0 lt 11.5.1 ge 11.4.0 lt 11.4.8 ge 0 lt 11.3.11 https://about.gitlab.com/2018/11/28/security-release-gitlab-11-dot-5-dot-1-released/ CVE-2018-19494 CVE-2018-19493 CVE-2018-19495 CVE-2018-19496 CVE-2018-19577 CVE-2018-19573 CVE-2018-19570 CVE-2018-19572 CVE-2018-19576 CVE-2018-19575 CVE-2018-19569 CVE-2018-19585 CVE-2018-19574 CVE-2018-19571 CVE-2018-19580 CVE-2018-19583 CVE-2018-19582 CVE-2018-19581 CVE-2018-19584 CVE-2018-19579 CVE-2018-19578

VuXML ID

Description

8a4aba2d-f33e-11e8-9416-001b217b3468

Gitlab -- Multiple vulnerabilities

Gitlab reports:

View Names of Private Groups

Persistent XSS in Environments

SSRF in Prometheus integration

Unauthorized Promotion of Milestones

Exposure of Confidential Issue Title

Persisent XSS in Markdown Fields via Mermaid Script

Persistent XSS in Markdown Fields via Unrecognized HTML Tags

Symlink Race Condition in Pages

Unauthorized Changes by Guest User in Issues

Unauthorized Comments on Locked Issues

Improper Enforcement of Token Scope

CRLF Injection in Project Mirroring

XSS in OAuth Authorization

SSRF in Webhooks

Send Email on Email Address Change

Workhorse Logs Contained Tokens

Unauthorized Publishing of Draft Comments

Guest Can Set Weight of a New Issue

Disclosure of Private Group's Members and Milestones

Persisent XSS in Operations

Reporter Can View Operations Page

Discovery 2018-11-28
Entry 2018-11-28
gitlab-ce

ge 11.5.0 lt 11.5.1

ge 11.4.0 lt 11.4.8

ge 0 lt 11.3.11

https://about.gitlab.com/2018/11/28/security-release-gitlab-11-dot-5-dot-1-released/
CVE-2018-19494
CVE-2018-19493
CVE-2018-19495
CVE-2018-19496
CVE-2018-19577
CVE-2018-19573
CVE-2018-19570
CVE-2018-19572
CVE-2018-19576
CVE-2018-19575
CVE-2018-19569
CVE-2018-19585
CVE-2018-19574
CVE-2018-19571
CVE-2018-19580
CVE-2018-19583
CVE-2018-19582
CVE-2018-19581
CVE-2018-19584
CVE-2018-19579
CVE-2018-19578