2020-03-13 17:13:49
mitre
PUBLISHED
GitLab 10.1 through 12.8.1 has Incorrect Access Control. A scenario was discovered in which a GitLab account could be taken over through an expired link.