mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-26 05:17:47 +02:00
0xMarcio
750 B
750 B
CVE-2021-22171
Description
Insufficient validation of authentication parameters in GitLab Pages for GitLab 11.5+ allows an attacker to steal a victim's API token if they click on a maliciously crafted link
POC
Reference
- https://gitlab.com/gitlab-org/gitlab-pages/-/issues/262
- https://gitlab.com/gitlab-org/gitlab-pages/-/issues/262
Github
No PoCs found on GitHub currently.