296,172
Total vulnerabilities in the database
An issue has been discovered in GitLab CE/EE affecting all versions from 11.1 before 17.10.7, 17.11 before 17.11.3, and 18.0 before 18.0.1. Improper XPath validation allows modified SAML response to bypass 2FA requirement under specialized conditions.
| Software | From | Fixed in |
|---|---|---|
| gitlab / gitlab | 18.0.0 | 18.0.0.x |
| gitlab / gitlab | 17.11.0 | 17.11.3 |
| gitlab / gitlab | 11.1.0 | 17.10.7 |