Open Redirect Vulnerability in GitLab CE/EE Versions Before 15.8.5, 15.9.4, 15.10.1

Open Redirect Vulnerability in GitLab CE/EE Versions Before 15.8.5, 15.9.4, 15.10.1

CVE-2023-0155 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:N/I:L/A:L

An issue has been discovered in GitLab CE/EE affecting all versions before 15.8.5, 15.9.4, 15.10.1. Open redirects was possible due to framing arbitrary content on any page allowing user controlled markdown

Learn more about our User Device Pen Test.