Known Vulnerabilities
CVE-2022-0741
Improper input validation in all versions of GitLab CE/EE using sendmail to send emails allowed an attacker to steal environment variables via specially crafted email addresses.
MEDIUM
CVSS 5.8
Published Apr 01, 2022
CVE-2022-0751
Inaccurate display of Snippet files containing special characters in all versions of GitLab CE/EE allows an attacker to create Snippets with misleading content which could trick unsuspecting users into executing arbitrary commands
MEDIUM
CVSS 6.5
Published Mar 28, 2022