Back to search
CVE-2019-5469
Published: Dec 18, 2019
Modified: Aug 4, 2024
PUBLISHED
Description
An IDOR vulnerability exists in GitLab <v12.1.2, <v12.0.4, and <v11.11.6 that allowed uploading files from project archive to replace other users files potentially allowing an attacker to replace project binaries or other uploaded assets.
| Vendor | Product | Versions |
|---|---|---|
n/a | GitLab | affected Fixed versions 12.1.2, 12.0.4, and 11.11.6 |
Weaknesses (CWE)
References
https://hackerone.com/reports/534794
x_refsource_MISC
https://gitlab.com/gitlab-org/gitlab-ce/issues/60551
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now