vulnerability
FreeBSD: VID-da459dbc-5586-11e9-abd6-001b217b3468 (CVE-2019-10111): Gitlab -- Multiple vulnerabilities
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 3 | (AV:N/AC:M/Au:S/C:N/I:P/A:N) | Apr 2, 2019 | Apr 3, 2019 | Mar 25, 2026 |
Severity
3
CVSS
(AV:N/AC:M/Au:S/C:N/I:P/A:N)
Published
Apr 2, 2019
Added
Apr 3, 2019
Modified
Mar 25, 2026
Description
Gitlab reports: DoS potential for regex in CI/CD refs Related branches visible in issues for guests Persistent XSS at merge request resolve conflicts Improper authorization control "move issue" Guest users of private projects have access to releases DoS potential on project languages page Recurity assessment: information exposure through timing discrepancy Recurity assessment: loginState HMAC issues Recurity assessment: open redirect PDF.js vulnerable to CVE-2018-5158 IDOR labels of private projects/groups EXIF geolocation data not stripped from uploaded images
Solution
freebsd-upgrade-package-gitlab-ce
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.