FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-23 14:57:51 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
a3495e61-047f-11eb-86ea-001b217b3468Gitlab -- multiple vulnerabilities

Gitlab reports:

Potential Denial Of Service Via Update Release Links API

Insecure Storage of Session Key In Redis

Improper Access Expiration Date Validation

Cross-Site Scripting in Multiple Pages

Unauthorized Users Can View Custom Project Template

Cross-Site Scripting in SVG Image Preview

Incomplete Handling in Account Deletion

Insufficient Rate Limiting at Re-Sending Confirmation Email

Improper Type Check in GraphQL

To-dos Are Not Redacted When Membership Changes

Guest users can modify confidentiality attribute

Command injection on runner host

Insecure Runner Configuration in Kubernetes Environments


Discovery 2020-10-01
Entry 2020-10-02
gitlab-ce
ge 13.4.0 lt 13.4.2

ge 13.3.0 lt 13.3.7

ge 7.12 lt 13.2.10

https://about.gitlab.com/releases/2020/10/01/security-release-13-4-2-release/
CVE-2020-13333
CVE-2020-13332
CVE-2020-13335
CVE-2020-13334
CVE-2020-13327