EXIF Geolocation Data Exposure in GitLab Community and Enterprise Edition

EXIF Geolocation Data Exposure in GitLab Community and Enterprise Edition

CVE-2019-15740 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

An issue was discovered in GitLab Community and Enterprise Edition 7.9 through 12.2.1. EXIF Geolocation data was not being removed from certain image uploads.

Learn more about our Web Application Penetration Testing UK.