Information Exposure via Merge Request JSON Endpoint

Information Exposure via Merge Request JSON Endpoint

CVE-2018-17939 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

An issue was discovered in GitLab Community and Enterprise Edition 11.1.x before 11.1.8, 11.2.x before 11.2.5, and 11.3.x before 11.3.2. There is Information Exposure via the merge request JSON endpoint.

Learn more about our Web Application Penetration Testing UK.