Missing validation in DAST analyzer affecting all versions from 1.11.0 before 3.0.32, allows custom request headers to be sent with every request, regardless of the host.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
gitlab dynamic application security testing analyzer |