CVE-2018-19582 Details

Find, fix and prevent vulnerabilities in your applications, infrastructure and computers.


GitLab EE, versions 11.4 before 11.4.8 and 11.5 before 11.5.1, is affected by an insecure direct object reference vulnerability that permits an unauthorized user to publish the draft merge request comments of another user.

  • CVE: CVE-2018-19582
  • CWE: CWE-200
  • Published Date: Wednesday 10th of July 2019
  • Modified Date: Thursday 11th of July 2019
  • Keyword Search

    Search CVEs, Products and Vendors.

    Download Mageni Vulnerability Platform

    Mageni provides a free vulnerability scanning and management platform which helps you need to find, prioritize, remediate and manage the vulnerabilities.