CVE-2019-5461
N/A
N/A
Summary
An input validation problem was discovered in the GitHub service integration which could result in an attacker being able to make arbitrary POST requests in a GitLab instance's internal network. This vulnerability was addressed in 12.1.2, 12.0.4, and 11.11.6.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | GitLab Community Edition | Fix Versions: 12.1.2, 12.0.4, and 11.11.6 | affected |
Weaknesses
- CWE-20: Improper Input Validation (CWE-20)
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.