CVE-2021-22175 – When requests to the internal network for webhooks are enabled, a server-side request forg …

Vuln ID: CVE-2021-22175

Published:  2021-06-11  16:15:09Z

Description: When requests to the internal network for webhooks are enabled, a server-side request forgery vulnerability in GitLab affecting all versions starting from 10.5 was possible to exploit for an unauthenticated attacker even on a GitLab instance where registration is disabled

Source: NVD.NIST.GOV