GitLab CVE-2023-2825 PoC. This PoC leverages a path traversal vulnerability to retrieve the /etc/passwd file from a system running GitLab 16.0.0.
CVE-2023-2825 - GitLab CE/EE 1600 Arbitrary File Read via Path Traversal On May 23, 2023 GitLab released version 1601 which fixed a critical vulnerability, CVE-2023-2825, affecting the Community Edition (CE) and Enterprise Edition (EE) version 1600 The vulnerability allows unauthenticated users to read arbitrary files through a path traversal bug It was discovered by pw