An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. It allows Uncontrolled Resource Consumption. Date published : 2019-04-17 https://about.gitlab.com/2019/03/04/security-release-gitlab-11-dot-8-dot-1-released/ https://gitlab.com/gitlab-org/gitlab-ce/issues/55653
An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. It has Incorrect Access Control (issue 2 of 5). Date published : 2019-04-17 https://about.gitlab.com/2019/03/04/security-release-gitlab-11-dot-8-dot-1-released/ https://gitlab.com/gitlab-org/gitlab-ce/issues/54159
An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. Its User Interface has a Misrepresentation of Critical Information. Date published : 2019-04-17 https://about.gitlab.com/2019/03/04/security-release-gitlab-11-dot-8-dot-1-released/ https://about.gitlab.com/blog/categories/releases/
An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. It allows Information Exposure (issue 5 of 5). Date published : 2019-04-17 https://about.gitlab.com/2019/03/04/security-release-gitlab-11-dot-8-dot-1-released/ https://gitlab.com/gitlab-org/gitlab-ce/issues/54783
An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. It allows Information Exposure (issue 4 of 5). Date published : 2019-04-17 https://about.gitlab.com/2019/03/04/security-release-gitlab-11-dot-8-dot-1-released/ https://gitlab.com/gitlab-org/gitlab-ce/issues/54803
An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. It allows CSRF. Date published : 2019-04-17 https://about.gitlab.com/2019/03/04/security-release-gitlab-11-dot-8-dot-1-released/ https://gitlab.com/gitlab-org/gitlab-ce/issues/55664
An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. It allows Information Exposure (issue 3 of 5). Date published : 2019-04-17 https://about.gitlab.com/2019/03/04/security-release-gitlab-11-dot-8-dot-1-released/ https://gitlab.com/gitlab-org/gitlab-ce/issues/52524
An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. It allows SSRF. Date published : 2019-04-17 https://about.gitlab.com/2019/03/04/security-release-gitlab-11-dot-8-dot-1-released/ https://gitlab.com/gitlab-org/gitlab-ce/issues/55468
An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. It allows Information Exposure (issue 2 of 5). Date published : 2019-04-17 https://about.gitlab.com/2019/03/04/security-release-gitlab-11-dot-8-dot-1-released/ https://gitlab.com/gitlab-org/gitlab-ce/issues/54795
An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. It allows Information Exposure (issue 1 of 5). Date published : 2019-04-17 https://about.gitlab.com/2019/03/04/security-release-gitlab-11-dot-8-dot-1-released/ https://gitlab.com/gitlab-org/gitlab-ce/issues/54635
An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. It has Incorrect Access Control. Date published : 2019-04-17 https://about.gitlab.com/2019/03/04/security-release-gitlab-11-dot-8-dot-1-released/ https://gitlab.com/gitlab-org/gitlab-ce/issues/51971
A hard-link created from the log file of Check Point ZoneAlarm up to 15.4.062 to any file on the system will get its permission changed so that all users can access that linked file....
Some of the DLLs loaded by Check Point ZoneAlarm up to 15.4.062 are taken from directories where all users have write permissions. This can allow a local attacker to replace a DLL file with...
A vulnerability has been identified in Spectrum Power 4 (with Web Office Portal). An attacker with network access to the web server on port 80/TCP or 443/TCP could execute system commands with administrative privileges....