CVE-2019-15738 (gitlab)

An issue was discovered in GitLab Community and Enterprise Edition 12.0 through 12.2.1. Under certain conditions, merge request IDs were being disclosed via email.
Source: NIST
CVE-2019-15738 (gitlab)