Site icon API Security Blog

CVE-2025-6168 Incorrect Authorization in GitLab

Victor Test

image
An issue has been discovered in GitLab EE affecting all versions from 18.0 before 18.0.4 and 18.1 before 18.1.2 that could have allowed authenticated maintainers to bypass group-level user invitation restrictions by sending crafted API…Read More

Exit mobile version