Camaleon CMS v2.7.0 - Server-Side Template Injection (SSTI)

Cameleon CMS 2.7.4 - Persistent Stored XSS in Post Title

pdfkit v0.8.7.2 - Command Injection

GitLab v15.3 - Remote Code Execution (RCE) (Authenticated)

GitLab 14.9 - Stored Cross-Site Scripting (XSS)

Gitlab 14.9 - Authentication Bypass

GitLab 13.10.2 - Remote Code Execution (RCE) (Unauthenticated)

Gitlab 13.10.2 - Remote Code Execution (Authenticated)

Gitlab 13.9.3 - Remote Code Execution (Authenticated)

GitLab Community Edition (CE) 13.10.3 - 'Sign_Up' User Enumeration

GitLab Community Edition (CE) 13.10.3 - User Enumeration

STVS ProVision 5.9.10 - Cross-Site Request Forgery (Add Admin)

STVS ProVision 5.9.10 - File Disclosure (Authenticated)

GitLab 11.4.7 - RCE (Authenticated) (2)

GitLab 11.4.7 - Remote Code Execution (Authenticated) (1)

Gitlab 12.9.0 - Arbitrary File Read (Authenticated)