Web scan has found a session fixation vulnerability in my self-managed GitLab
Complaint about it allows an attacker to impersonate a user by abusing an authenticated session ID (SID).
Try to upgrade to latest version 14.5.2. Still fail to fix the vulnerability. Any idea?