Gitlab Universal Password

Posted on 2022-05-01: https://twitter.com/hackergautam/status/1520624546654867456

Frooti🍋 ⚡️ @HackerGautam

Gitlab 14.9 CVE-2022-1162

New Gitlab Accounts (created since the first affect version and if Gitlab is before the patched version) can be logged into with the following password:

123qweQWE!@#000000000

just wow, i can’t fathom how this happened, hard coded case in hash checking surely would’ve been caught earlier??