2 matches found
CVE-2017-11438
GitLab Community Edition CE and Enterprise Edition EE before 9.0.11, 9.1.8, 9.2.8 allow an authenticated user with the ability to create a group to add themselves to any project that is inside a subgroup...
CVE-2017-11438
GitLab CE/EE prior to 9.0.11, 9.1.8, 9.2.8 allows an authenticated user who can create a group to add themselves to any project inside a subgroup. This describes a permissions/ownership issue within GitLab projects under subgroups. The provided documents do not detail the root cause beyond the de...