2021-04-02 16:25:43
GitLab
PUBLISHED
An issue has been discovered in GitLab CE/EE affecting all previous versions. If the victim is an admin, it was possible to issue a CSRF in System hooks through the API.