CVE-2024-4597 | GitLab Enterprise Edition up to 16.9.6/16.10.4/16.11.1 cross-site request forgery (Issue 438686)

Inserito da Angelo Barbosa | Mag 9, 2024 | CVE

A vulnerability was found in GitLab Enterprise Edition up to 16.9.6/16.10.4/16.11.1. It has been classified as problematic. This affects an unknown part. The manipulation leads to cross-site request forgery.

This vulnerability is uniquely identified as CVE-2024-4597. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-4597 | GitLab Enterprise Edition up to 16.9.6/16.10.4/16.11.1 cross-site request forgery (Issue 438686)

Post correlati

CVE-2024-28237 | OctoPrint up to 1.9.3/1.10.0rc2 URL cross site scripting (GHSA-x7mf-wrh9-r76c)

CVE-2024-1904 | MasterStudy LMS Plugin up to 3.2.13 on WordPress search_posts authorization

CVE-2024-22286 | Aluka BA Plus Plugin up to 1.0.3 on WordPress cross site scripting

CVE-2024-33374 | LB-LINK BL-W1210M 2.0 UART/Serial Interface access control