A vulnerability classified as problematic was found in GitLab Community Edition and Enterprise Edition up to 13.12.8/14.0.6/14.1.1 (Bug Tracking Software). This vulnerability affects an unknown code of the component Impersonation Token Handler. Upgrading to version 13.12.9, 14.0.7 or 14.1.2 eliminates this vulnerability.
GitLab Community Edition/Enterprise Edition up to 13.12.8/14.0.6/14.1.1 Impersonation Token access control
- Virtual Patching
- August 26, 2021
- 12:05 am
Contact us to get started
CVE-2023-28843 : PAYPAL UP TO 3.16.3 ON PRESTASHOP SQL INJECTION
Description PrestaShop/paypal is an open source module for the PrestaShop web commerce ecosystem which provides paypal payment support. A SQL
CVE-2023-28727 : PANASONIC AISEG2 UP TO 2.93A HEADER X-FORWARDED-FOR IMPROPER AUTHENTICATION
Description Panasonic AiSEG2 versions 2.00J through 2.93A allows adjacent attackers bypass authentication due to mishandling of X-Forwarded-For headers. References https://www2.panasonic.biz/jp/densetsu/aiseg/firmup_info.html
CVE-2022-36980 : IVANTI AVALANCHE 6.3.2.3490 ENTERPRISESERVER SERVICE TOCTOU
Description This vulnerability allows remote attackers to bypass authentication on affected installations of Ivanti Avalanche 6.3.2.3490. Although authentication is required