Security Advisory
CVE-2020-12275
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
GitLab 12.6 through 12.9 is vulnerable to a privilege escalation that allows an external user to create a personal snippet through the API.