Vulnerabilities

CVE-2022-0124

by Fred · 18/01/2022

An issue has been discovered affecting GitLab versions prior to 14.4.5, between 14.5.0 and 14.5.3, and between 14.6.0 and 14.6.1. Gitlab’s Slack integration is incorrectly validating user input and allows to craft malicious URLs that are sent to slack.

Date published : 2022-01-18

https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0124.json

https://gitlab.com/gitlab-org/gitlab/-/issues/340176

Similar

Tags: Cybersecurity Alert