what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 2 of 2

Files from Greenwolf

Gitlab 14.9 Cross Site Scripting

Posted Apr 26, 2022

Authored by stacksmashing, Greenwolf

Gitlab versions 14.9 prior to 14.9.2, 14.8 prior to 14.8.5, and 14.7 prior to 14.7.7 suffer from a persistent cross site scripting vulnerability.

tags | exploit, xss

advisories | CVE-2022-1175

SHA-256 | 8cb78a3472e539403d6d39fd3ad3b5fdeb25087820f659a117ceeeb4ad1a58b6

Download | Favorite | View

Gitlab 14.9 Authentication Bypass

Posted Apr 26, 2022

Authored by stacksmashing, Greenwolf

Gitlab versions 14.9 prior to 14.9.2, 14.8 prior to 14.8.5, and 14.7 prior to 14.7.7 suffer from a bypass vulnerability due to having set a hardcoded password for accounts registered using an OmniAuth provider.

tags | exploit, bypass

advisories | CVE-2022-1162

SHA-256 | b9871a137c86a7af7a3f259af24481816299cde62d5eef695abcb78150bb320f

Download | Favorite | View