Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2020-13346

Disclosure Date: October 07, 2020 (last updated February 22, 2025)
Membership changes are not reflected in ToDo subscriptions in GitLab versions prior to 13.2.10, 13.3.7 and 13.4.2, allowing guest users to access confidential issues through API.
Attack Vector: NetworkPrivileges: LowUser Interaction: None
0
0