2021-01-15 15:10:39
GitLab
PUBLISHED
Insufficient validation of authentication parameters in GitLab Pages for GitLab 11.5+ allows an attacker to steal a victims API token if they click on a maliciously crafted link