CVE-2023-2825

CVE-2023-2825

An issue has been discovered in GitLab CE/EE affecting only version 16.0.0. An unauthenticated malicious user can use a path traversal vulnerability to read arbitrary files on the server when an attachment exists in a public project nested within at least five groups.

Source: CVE-2023-2825

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다