Linux Distros Unpatched Vulnerability : CVE-2020-10956

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GitLab 8.10 and later through 12.9 is vulnerable to an SSRF in a project import note feature. CVE-2020-10956 Note that Nessus relies on the presence of the...

PT-2020-12447 · Gitlab · Gitlab

Name of the Vulnerable Software and Affected Versions: GitLab versions 8.10 through 12.9 Description: The issue is related to a Server-Side Request Forgery SSRF in the project import note feature. This allows an attacker to forge requests from the server, potentially leading to unauthorized acces...