Email Address Change Notification Vulnerability in GitLab

Email Address Change Notification Vulnerability in GitLab

CVE-2018-19580 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:N

All versions of GitLab prior to 11.5.1, 11.4.8, and 11.3.11 do not send an email to the old email address when an email address change is made.

Learn more about our Web Application Penetration Testing UK.