admin/cve
1
0
Fork 0
mirror of https://github.com/0xMarcio/cve.git synced 2025-05-06 02:31:38 +00:00
Code Issues Packages Projects Releases Wiki Activity
cve/2017/CVE-2017-0919.md
0xMarcio 48a00929ac Removed duplicates
2024-06-18 02:51:15 +02:00

18 lines
726 B
Markdown
Raw Blame History

### [CVE-2017-0919](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0919)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)
### Description
GitLab Community and Enterprise Editions before 10.1.6, 10.2.6, and 10.3.4 are vulnerable to an authorization bypass issue in the GitLab import component resulting in an attacker being able to perform operations under a group in which they were previously unauthorized.
### POC
#### Reference
- https://hackerone.com/reports/301137
#### Github
No PoCs found on GitHub currently.
Reference in New Issue View Git Blame Copy Permalink