CVEInsight.

Free vulnerability intelligence for developers, security teams, and researchers. Data sourced from public databases for informational purposes only.

Explore

Legal

CVE data sourced from NVD / NIST & public disclosures.

gitlab

dynamic_application_security_testing_analyzer

4 known vulnerabilities · sorted by CVSS score

CVE-2022-3767

HIGH7.7

Missing validation in DAST analyzer affecting all versions from 1.11.0 prior to 3.0.32, allows custom request headers to be sent with every request, regardless of the host.

gitlab / dynamic_application_security_testing_analyzer

Network

Published Mar 9, 2023

CVE-2022-4317

MEDIUM5.0

An issue has been discovered in GitLab DAST analyzer affecting all versions starting from 1.47 before 3.0.51, which sends custom request headers in redirects.

gitlab / dynamic_application_security_testing_analyzer

Network

Published Mar 9, 2023

CVE-2022-4315

MEDIUM5.0

An issue has been discovered in GitLab DAST analyzer affecting all versions starting from 2.0 before 3.0.55, which sends custom request headers with every request on the authentication page.

gitlab / dynamic_application_security_testing_analyzer

Network

Published Mar 8, 2023

CVE-2023-0326

MEDIUM5.0

An issue has been discovered in GitLab DAST API scanner affecting all versions starting from 1.6.50 before 2.11.0, where Authorization headers was leaked in vulnerability report evidence.

gitlab / dynamic_application_security_testing_analyzer

Network

Published Mar 27, 2023