Site icon API Security Blog

GitLab 13.x < 14.6.5 / 14.7.x < 14.7.4 / 14.8.x < 14.8.2 User Enumeration

An issue has been discovered in GitLab CE/EE affecting versions 13.0 to 14.6.5, 14.7 to 14.7.4, and 14.8 to 14.8.2. Private GitLab instances with restricted sign-ups may be vulnerable to user enumeration by unauthenticated users through the GraphQL API.Read More

Exit mobile version