Critical Workspace Creation Flaw in GitLab Allows File Overwrite

The latest update also addressed four medium-severity flaws, including issues related to regular expression denial-of-service, HTML injection, and disclosure of user’s public email address via the tags RSS feed.