Security Advisory

CVE-2022-4138

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-02-13 00:00:00

Last updated 2025-03-21 19:13:19

Assigner GitLab

State PUBLISHED

Description

A Cross Site Request Forgery issue has been discovered in GitLab CE/EE affecting all versions before 15.6.7, all versions starting from 15.7 before 15.7.6, and all versions starting from 15.8 before 15.8.1. An attacker could take over a project if an Owner or Maintainer uploads a file to a malicious project.

← Browse all CVEs View on cve.org ↗