An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.7.9 before 13.8.7, all versions starting from 13.9 before 13.9.5, and all versions starting from 13.10 before 13.10.1. A specially crafted Wiki page allowed attackers to read arbitrary files on the server.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: GitLab

Published: 2021-04-02T16:16:15

Updated: 2024-08-03T18:37:17.326Z

Reserved: 2021-01-05T00:00:00

Link: CVE-2021-22203

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2021-04-02T17:15:13.083

Modified: 2022-07-22T12:14:46.430

Link: CVE-2021-22203

cve-icon Redhat

No data.