Vulnerability CVE-2024-4660


Published: 2024-09-12

Description:
An issue has been discovered in GitLab EE affecting all versions starting from 11.2 before 17.1.7, all versions starting from 17.2 before 17.2.5, all versions starting from 17.3 before 17.3.2. It was possible for a guest to read the source code of a private project by using group templates.

 References:
https://gitlab.com/gitlab-org/gitlab/-/issues/460892
https://hackerone.com/reports/2480126

Copyright 2026, cxsecurity.com

 

Back to Top