mirror of
https://github.com/0xMarcio/cve.git
synced 2025-11-30 18:56:19 +00:00
1009 B
1009 B
CVE-2021-22223
%20in%20GitLab&color=brightgreen)
Description
Client-Side code injection through Feature Flag name in GitLab CE/EE starting with 11.9 allows a specially crafted feature flag name to PUT requests on behalf of other users via clicking on a link
POC
Reference
No PoCs from references.