VDB
CVE-2020-10977
CVE-2020-10977
PUBLISHED
GitLab EE/CE 8.5 to 12.9 is vulnerable to a an path traversal when moving an issue between projects.
EPSS 4.77% · 89.7th percentile
Risk Scores
EPSS Score
4.77%
89.7th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bitnami | gitlab | 8.5.0 |
| Bitnami | gitlab | 8.5.0, 8.5.0 |
Exploit Intelligence
- GitLab 12.9 Arbitrary File Read (github-poc-repo)
- GitLab 12.9 Arbitrary File Read (github-poc-repo)
- GitLab 12.9 Arbitrary File Read (github-poc-repo)
- GitLab 12.9 Arbitrary File Read (github-poc-repo)
- GitLab 12.9 Arbitrary File Read (github-poc-repo)
- GitLab 12.9 Arbitrary File Read (github-poc-repo)
- GitLab 12.9 Arbitrary File Read (github-poc-repo)
- A (wanted to be) better script than what can be found on exploit-db about the authenticated arbitrary read file on GitLab v12.9.0 (CVE-2020-10977) (github-poc-repo)
- A (wanted to be) better script than what can be found on exploit-db about the authenticated arbitrary read file on GitLab v12.9.0 (CVE-2020-10977) (github-poc-repo)
- A (wanted to be) better script than what can be found on exploit-db about the authenticated arbitrary read file on GitLab v12.9.0 (CVE-2020-10977) (github-poc-repo)
…and 88 more exploits
Timeline
- Apr 8, 2020 CVE Published
- Dec 9, 2020 PoC Published
- Dec 10, 2020 PoC Published
- Apr 14, 2021 EPSS Score
- Jun 23, 2021 EPSS Score
- Aug 24, 2021 EPSS Score
- Dec 27, 2021 EPSS Score
- Feb 4, 2022 EPSS Score
- Feb 28, 2022 EPSS Score
- May 1, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Nov 6, 2022 EPSS Score