Team ZionLab

1 exploit Active since Jun 2021
CVE-2021-22214 NOMISEC MEDIUM WORKING POC
GitLab 10.5-13.10.4 - Unauthenticated Server-Side Request Forgery via Webhook Internal Network Requests
When requests to the internal network for webhooks are enabled, a server-side request forgery vulnerability in GitLab CE/EE affecting all versions starting from 10.5 was possible to exploit for an unauthenticated attacker even on a GitLab instance where registration is limited
1 stars
CVSS 6.8