The host is installed with GitLab CE/EE 15.7 before 15.8.5, 15.8 before 15.9.4, 15.9 before 15.10.1 and is prone to an open redirect vulnerability. A flaw is present in the application, which fails to properly handle an open redirects issue. Successful exploitation allows for an attacker to frame arbitrary content on any page allowing user controlled markdown.