Security Advisory

CVE-2021-22224

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-07-07 11:26:37
Last updated 2024-08-03 18:37:18
Assigner GitLab
State PUBLISHED

Description

A cross-site request forgery vulnerability in the GraphQL API in GitLab since version 13.12 and before versions 13.12.6 and 14.0.2 allowed an attacker to call mutations as the victim