GMS-2022-182: Improper regex in htaccess file

March 1, 2022 (updated March 2, 2022)

The default .htaccess file has some restrictions in the access to PHP files to only allow specific PHP files to be executed in the root of the application.

References

github.com/advisories/GHSA-mj6m-246h-9w56
github.com/mautic/mautic/security/advisories/GHSA-mj6m-246h-9w56

Detect and mitigate GMS-2022-182 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →