2020-03-13 16:34:34
mitre
PUBLISHED
GitLab before 12.8.2 allows Information Disclosure. Badge images were not being proxied, causing mixed content warnings as well as leaking the IP address of the user.