Known Vulnerabilities for Mcp-gitlab by Zereight
Listed below are 10 of the newest known vulnerabilities associated with "Mcp-gitlab" by "Zereight".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-61462 json | mcp-gitlab contains a path traversal vulnerability in the job_id parameter of build/index.js that allows attackers to redirec... | Not Provided | 2026-07-13 | 2026-07-13 |
| CVE-2026-58370 json | Woodpecker before 3.15.0 matches the ApprovalAllowedUsers bypass list against pipeline.Author. For the GitLab forge driver, p... | Not Provided | 2026-06-30 | 2026-07-02 |
| CVE-2026-54673 json | electron-updater allows for automatic updates for Electron apps. Prior to 9.7.0, the HTTP redirect handler (HttpExecutor.prep... | Not Provided | 2026-06-30 | 2026-07-01 |
| CVE-2026-44931 json | The newly introduced RecordUsage D-Bus method https://gitlab.freedesktop.org/pwithnall/malcontent/-/blob/0.14.0/libmalconten... | Not Provided | 2026-05-13 | 2026-05-13 |
| CVE-2026-44895 json | GitLab MCP Server lets an AI agent talk directly to GitLab. Prior to 0.6.0, the HTTP transport in src/transport.ts ships with... | Not Provided | 2026-05-26 | 2026-05-27 |
| CVE-2026-42195 json | draw.io is a configurable diagramming and whiteboarding application. Prior to version 29.7.9, the draw.io client accepts a ?g... | Not Provided | 2026-05-08 | 2026-05-08 |
| CVE-2026-40161 json | Tekton Pipelines project provides k8s-style resources for declaring CI/CD-style pipelines. Starting in version 1.0.0 and prio... | Not Provided | 2026-04-21 | 2026-05-21 |
| CVE-2026-27882 json | Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to 4.0.0-beta.461, ... | Not Provided | 2026-06-30 | 2026-06-30 |
| CVE-2026-13320 json | GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.7 before 18.11.7, 19.0 before 19.0.4, and 19.1 ... | Not Provided | 2026-07-08 | 2026-07-09 |
| CVE-2026-13151 json | GitLab has remediated an issue in GitLab EE affecting all versions from 16.10 before 18.11.7, 19.0 before 19.0.4, and 19.1 be... | Not Provided | 2026-07-08 | 2026-07-09 |