CVE-2019-13001
GitLab Community and Enterprise Edition versions 11.9–12.0.2 are affected by an authorization flaw in GitLab Snippets that allowed unauthorized users to add comments to a private snippet, effectively bypassing authentication. The issue enables access to private snippet comments via network exploi...