GitLab 10.1 through 12.8.1 has Incorrect Access Control. A scenario was discovered in which a GitLab account could be taken over through an expired link.
Affected Software
Name |
Vendor |
Start Version |
End Version |
Gitlab |
Gitlab |
10.1.0 (including) |
12.8.1 (including) |
References