An issue has been discovered in GitLab DAST API scanner affecting all versions starting from 1.6.50 before 2.11.0, where Authorization headers was leaked in vulnerability report evidence.
Max CVSS
5.0
Published
2023-03-27
Updated
2023-04-03
EPSS
0.05%
An issue has been discovered in GitLab DAST analyzer affecting all versions starting from 1.47 before 3.0.51, which sends custom request headers in redirects.
Max CVSS
6.1
Published
2023-03-09
Updated
2023-03-15
EPSS
0.06%
An issue has been discovered in GitLab DAST analyzer affecting all versions starting from 2.0 before 3.0.55, which sends custom request headers with every request on the authentication page.
Max CVSS
6.5
Published
2023-03-08
Updated
2023-03-22
EPSS
0.09%
Missing validation in DAST analyzer affecting all versions from 1.11.0 prior to 3.0.32, allows custom request headers to be sent with every request, regardless of the host.
Max CVSS
7.7
Published
2023-03-09
Updated
2023-03-15
EPSS
0.08%
4 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!