Medium severity5.3NVD Advisory· Published Dec 14, 2020· Updated Jun 17, 2026
CVE-2020-35236
CVE-2020-35236
Description
The GitLab Webhook Handler in amazee.io Lagoon before 1.12.3 has incorrect access control associated with project deletion.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- amazee.io/Lagoondescription
Patches
Vulnerability mechanics
References
4- github.com/amazeeio/lagoon/commit/1140289bf9fa98b8602ab4662ae867b210d8476bnvdPatchThird Party Advisory
- github.com/amazeeio/lagoon/compare/v1.12.2...v1.12.3nvdRelease NotesThird Party Advisory
- github.com/amazeeio/lagoon/tree/master/services/webhook-handlernvdThird Party Advisory
- github.com/amazeeio/lagoon/tree/master/services/webhooks2tasksnvdThird Party Advisory
News mentions
0No linked articles in our index yet.