all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

CVE-2022-4054 (gitlab)

Add to bookmarks

Web: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-4054

Jan. 26, 2023, 9:18 p.m. |

National Vulnerability Database web.nvd.nist.gov

An issue has been discovered in GitLab affecting all versions starting from 9.3 before 15.4.6, all versions starting from 15.5 before 15.5.5, all versions starting from 15.6 before 15.6.1. It was possible for a project maintainer to leak a webhook secret token by changing the webhook URL to an endpoint that allows them to capture request headers.

cve gitlab

Visit resource

More from web.nvd.nist.gov / National Vulnerability Database

CVE-2022-47596 (media_library_categories) 2 days, 20 hours ago | web.nvd.nist.gov
cve
CVE-2023-1575 (mega_main_menu) 2 days, 22 hours ago | web.nvd.nist.gov
cve
CVE-2022-48432 (intellij_idea) 3 days ago | web.nvd.nist.gov
cve
CVE-2022-48433 (intellij_idea) 3 days ago | web.nvd.nist.gov
cve
CVE-2022-38077 (popup_anything) 3 days ago | web.nvd.nist.gov
cve
CVE-2022-47433 (multi_rating) 3 days ago | web.nvd.nist.gov
cve
CVE-2022-47438 (booking_calendar) 3 days ago | web.nvd.nist.gov
cve
CVE-2022-48430 (intellij_idea) 3 days ago | web.nvd.nist.gov
cve
CVE-2022-47444 (profilepress) 3 days ago | web.nvd.nist.gov
cve

Latest InfoSec / Cybersecurity Jobs

View more jobs Post a job on infosec-jobs.com

Snr Security Engineer (cloud)

@ Verisk | Málaga, Spain
View on infosec-jobs.com

Cybersecurity Analyst

@ Visa | Bengaluru, India
View on infosec-jobs.com

Information Security Engineer

@ ServiceNow | Orlando, FL, United States
View on infosec-jobs.com

Director of Cloud Security - 100% US REMOTE

@ Experian | Allen, TX, United States
View on infosec-jobs.com

Azure DevSecOps - Solution Architect

@ Citizant | Chantilly, VA, United States
View on infosec-jobs.com

Cybersecurity Champion

@ NielsenIQ | Chicago, IL, United States
View on infosec-jobs.com

Senior Information Security Analyst

@ QAD, Inc. | Wroclaw, Poland
View on infosec-jobs.com

VP, Information Security

@ TrueAccord | Remote
View on infosec-jobs.com

DevSecOps Engineer- (100%) ( w/m/d) - Valbonne - Hybrid Work

@ SMG Swiss Marketplace Group | Valbonne, France
View on infosec-jobs.com

Information Security Director - Attack Surface Management (100% US REMOTE)

@ Experian | Allen, TX, United States
View on infosec-jobs.com

Director - Cybersecurity and Compliance

@ Visa | Foster City, CA, United States
View on infosec-jobs.com

Senior Threat Analyst | Remote, USA

@ Optiv | Kansas City, MO
View on infosec-jobs.com