The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a new warning about an actively exploited Server-Side Request Forgery (SSRF) vulnerability in GitLab Community and Enterprise Editions. The flaw, tracked as CVE‑2021‑39935, allows remote attackers to perform unauthorized server-side requests via the CI Lint API, potentially exposing sensitive internal systems or triggering further exploitation […] The post CISA Warns of Actively Exploited GitLab SSRF Vulnerability in Community and Enterprise Editions appeared first on Cyber Security News.