3 matches found
CVE-2022-0136
A vulnerability was discovered in GitLab versions 10.5 to 14.5.4, 14.6 to 14.6.4, and 14.7 to 14.7.1. GitLab was vulnerable to a blind SSRF attack through the Project Import feature...
CVE-2022-0136
A vulnerability was discovered in GitLab versions 10.5 to 14.5.4, 14.6 to 14.6.4, and 14.7 to 14.7.1. GitLab was vulnerable to a blind SSRF attack through the Project Import feature...
CVE-2022-0136
CVE-2022-0136 affects GitLab, with a blind SSRF vulnerability via the Project Import feature. Affected releases: GitLab 10.5–14.5.4, 14.6–14.6.4, and 14.7–14.7.1. Root cause: input handling in Project Import allowed server-side requests to internal resources. Impact: potential for arbitrary inter...