Total vulnerabilities in the database
GitLab 8.3 through 12.8.1 allows Information Disclosure. It was possible for certain non-members to access the Contribution Analytics page of a private group.
CVSS v3:
CVSS v2:
No CWE or OWASP classifications available.