GitLab before 12.8.2 allows Information Disclosure. Badge images were not being proxied, causing mixed content warnings as well as leaking the IP address of the user.
Affected Software
Name |
Vendor |
Start Version |
End Version |
Gitlab |
Gitlab |
* |
12.8.1 (including) |
References