An input validation issue in the... CVE-2023-3906

- AV AC AU C I A
发布: 2023-09-29
修订: 2024-10-03

An input validation issue in the asset proxy in GitLab EE, affecting all versions from 12.3 prior to 16.2.8, 16.3 prior to 16.3.5, and 16.4 prior to 16.4.1, allowed an authenticated attacker to craft image urls which bypass the asset proxy.

0%

漏洞利用/PoC

暂无可用Exp或PoC

受影响的平台与产品

当前有6条受影响产品信息