A vulnerability exists in GitLab versions prior to 13.1.10, 13.2.8 and 13.3.4. GitLab was vulnerable to a blind SSRF attack through the repository mirroring feature.
gitlab gitlab