FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-24 21:00:48 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
f414d69f-e43d-11ec-9ea4-001b217b3468	Gitlab -- multiple vulnerabilities Gitlab reports: Account take over via SCIM email change Stored XSS in Jira integration Quick action commands susceptible to XSS IP allowlist bypass when using Trigger tokens IP allowlist bypass when using Project Deploy Tokens Improper authorization in the Interactive Web Terminal Subgroup member can list members of parent group Group member lock bypass Discovery 2022-06-01 Entry 2022-06-04 gitlab-ce ge 15.0.0 lt 15.0.1 ge 14.10.0 lt 14.10.4 ge 11.10.0 lt 14.9.5 CVE-2022-1680 CVE-2022-1940 CVE-2022-1948 CVE-2022-1935 CVE-2022-1936 CVE-2022-1944 CVE-2022-1821 CVE-2022-1783 https://about.gitlab.com/releases/2022/06/01/critical-security-release-gitlab-15-0-1-released/

VuXML ID

Description

f414d69f-e43d-11ec-9ea4-001b217b3468

Gitlab -- multiple vulnerabilities

Gitlab reports:

Account take over via SCIM email change

Stored XSS in Jira integration

Quick action commands susceptible to XSS

IP allowlist bypass when using Trigger tokens

IP allowlist bypass when using Project Deploy Tokens

Improper authorization in the Interactive Web Terminal

Subgroup member can list members of parent group

Group member lock bypass

Discovery 2022-06-01
Entry 2022-06-04
gitlab-ce

ge 15.0.0 lt 15.0.1

ge 14.10.0 lt 14.10.4

ge 11.10.0 lt 14.9.5

CVE-2022-1680
CVE-2022-1940
CVE-2022-1948
CVE-2022-1935
CVE-2022-1936
CVE-2022-1944
CVE-2022-1821
CVE-2022-1783
https://about.gitlab.com/releases/2022/06/01/critical-security-release-gitlab-15-0-1-released/