A cross-site leak vulnerability in the OAuth flow of all versions of GitLab CE/EE since 7.10 allowed an attacker to leak an OAuth access token by getting the victim to visit a malicious page with Safari
CPE | Name | Operator | Version |
---|---|---|---|
gitlab | eq | 13.12.0-ee | |
gitlab | eq | 13.12.1-ee |