CVE-2018-15472

EPSS 0.25% · P49 Updated Feb 10, 2025

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2018-15472

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

An issue was discovered in GitLab Community and Enterprise Edition before 11.1.7, 11.2.x before 11.2.4, and 11.3.x before 11.3.1. The diff formatter using rouge can block for a long time in Sidekiq jobs without any timeout.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

GitLab 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

GitLab是美国GitLab公司的一个开源的端到端软件开发平台，具有内置的版本控制、问题跟踪、代码审查、CI/CD（持续集成和持续交付）等功能。 GitLab 存在安全漏洞，该漏洞源于 diff formatter 使用 rouge，可以在 Sidekiq 作业中长时间阻塞而不会超时。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2018-15472

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2018-15472

Please Login to view more intelligence information

Same Patch Batch · n/a · 2023-04-15 · 35 CVEs total

CVE-2023-2107	6.3 MEDIUM	IBOS del&op=recycle sql injection
CVE-2015-10101	3.5 LOW	Google Analytics Top Content Widget Plugin class-tgm-plugin-activation.php cross site scri
CVE-2020-29007		LilyPond 代码注入漏洞
CVE-2022-43698		Open-Xchange OX App Suite 代码问题漏洞
CVE-2020-17354		LilyPond 安全漏洞
CVE-2021-39295		Intel Integrated Baseboard Management Controller 资源管理错误漏洞
CVE-2021-34337		GNU Mailman 安全漏洞
CVE-2021-30153		MediaWiki 信息泄露漏洞
CVE-2022-47522		SonicWall SonicWave Secure Wireless Access Points 安全漏洞
CVE-2022-45030		rConfig SQL注入漏洞
CVE-2022-43699		Open-Xchange OX App Suite 代码问题漏洞
CVE-2023-24607		Qt 6 安全漏洞
CVE-2023-22670		Siemens Solid Edge 缓冲区错误漏洞
CVE-2023-22669		Siemens Solid Edge 缓冲区错误漏洞
CVE-2022-48178		X2Engine X2CRM 跨站脚本漏洞
CVE-2022-48177		X2Engine X2CRM 跨站脚本漏洞
CVE-2022-43696		Open-Xchange OX App Suite 跨站脚本漏洞
CVE-2022-43697		Open-Xchange OX App Suite 跨站脚本漏洞
CVE-2021-43612		lldpd 缓冲区错误漏洞
CVE-2018-17449		GitLab 安全漏洞

Showing top 20 of 35 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2018-15472

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2018-15472

I. Basic Information for CVE-2018-15472

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2018-15472

III. Intelligence Information for CVE-2018-15472

Same Patch Batch · n/a · 2023-04-15 · 35 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2018-15472

Leave a comment