Event JSON
{
"id": "b27af9d629e5634ce490e05c0266bdda172190c02d17bbd2c04ace2eba5a62c5",
"pubkey": "bb4fd569fbb78b4f856e82616989c6a0f40b4ab5827595782a62af3cf72c1049",
"created_at": 1705676402,
"kind": 1,
"tags": [
[
"t",
"Hackaday Columns"
],
[
"t",
"News"
],
[
"t",
"Security Hacks"
],
[
"t",
"gitlab"
],
[
"t",
"Ivanti"
],
[
"t",
"This Week in Security"
],
[
"t",
"vmware"
],
[
"proxy",
"https://hackaday.com/feed/#https%3A%2F%2Fhackaday.com%2F2024%2F01%2F19%2Fthis-week-in-security-gitlab-vmware-and-pixefail%2F",
"rss"
]
],
"content": "This Week in Security: Gitlab, VMware, and PixeFAIL\n\n\u003cimg width=\"800\" height=\"484\" src=\"https://hackaday.com/wp-content/uploads/2016/01/darkarts.jpg?w=800\" alt=\"\"/\u003eThere’s a Gitlab vulnerability that you should probably pay attention to. Tracked as CVE-2023-7028, this issue allows an attacker to specify a secondary email during a the password reset request. https://hackaday.com/2024/01/19/this-week-in-security-gitlab-vmware-and-pixefail/\n\n\nhttps://hackaday.com/2024/01/19/this-week-in-security-gitlab-vmware-and-pixefail/",
"sig": "8e74d4a8de7eb821a35a657f29ef6dde8230225135c080f4be49ee8af81a3f17173ef30ef75add96ed3c3ad79d44fca70e1d6de677d599361652e8b18a0fb62a"
}
![](https://hackaday.com/wp-content/uploads/2016/01/darkarts.jpg?w=800")
; alt=""/>There’s a Gitlab vulnerability that you should probably pay attention to. Tracked as CVE-2023-7028, this issue allows an attacker to specify a secondary email during a the password reset request. https://hackaday.com/2024/01/19/this-week-in-security-gitlab-vmware-and-pixefail/