CVE-2023-1401 Information

Description

An issue has been discovered in GitLab DAST scanner affecting all versions starting from 3.0.29 before 4.0.5 in which the DAST scanner leak cross site cookies on redirect during authorization.

Reference

https://hackerone.com/reports/1889255 https://gitlab.com/gitlab-org/gitlab/-/issues/396533