FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2025-02-07 16:55:44 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
1eb4d32c-a245-11ef-998c-2cf05da270f3	Gitlab -- vulnerabilities Gitlab reports: Unauthorized access to Kubernetes cluster agent Device OAuth flow allows for cross window forgery Denial of Service by importing malicious crafted FogBugz import payload Stored XSS through javascript URL in Analytics dashboards HTML injection in vulnerability Code flow could lead to XSS on self hosted instances Information disclosure through an API endpoint Discovery 2024-11-13 Entry 2024-11-14 gitlab-ce gitlab-ee >= 17.5.0 lt 17.5.2 >= 17.4.0 lt 17.4.4 >= 16.0.0 lt 17.3.7 CVE-2024-9693 CVE-2024-7404 CVE-2024-8648 CVE-2024-8180 CVE-2024-10240 https://about.gitlab.com/releases/2024/11/13/patch-release-gitlab-17-5-2-released/

VuXML ID

Description

1eb4d32c-a245-11ef-998c-2cf05da270f3

Gitlab -- vulnerabilities

Gitlab reports:

Unauthorized access to Kubernetes cluster agent

Device OAuth flow allows for cross window forgery

Denial of Service by importing malicious crafted FogBugz import payload

Stored XSS through javascript URL in Analytics dashboards

HTML injection in vulnerability Code flow could lead to XSS on self hosted instances

Information disclosure through an API endpoint

Discovery 2024-11-13
Entry 2024-11-14
gitlab-ce
gitlab-ee

>= 17.5.0 lt 17.5.2

>= 17.4.0 lt 17.4.4

>= 16.0.0 lt 17.3.7

CVE-2024-9693
CVE-2024-7404
CVE-2024-8648
CVE-2024-8180
CVE-2024-10240
https://about.gitlab.com/releases/2024/11/13/patch-release-gitlab-17-5-2-released/