CVE-2020-10977

Severity CVSS v4.0:
Pending analysis
Type:
CWE-22 Path Traversal
Publication date:
08/04/2020
Last modified:
06/10/2022

Description

GitLab EE/CE 8.5 to 12.9 is vulnerable to a an path traversal when moving an issue between projects.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:* 8.5.0 (including) 12.9 (including)
cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:* 8.5.0 (including) 12.9 (including)