First published: Sat Apr 15 2023(Updated: )
An issue was discovered in GitLab Community and Enterprise Edition before 11.1.7, 11.2.x before 11.2.4, and 11.3.x before 11.3.1. blog-viewer has stored XSS during repository browsing, if package.json exists. .
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
GitLab GitLab | <11.1.7 | |
GitLab GitLab | <11.1.7 | |
GitLab GitLab | >=11.2.0<11.2.4 | |
GitLab GitLab | >=11.2.0<11.2.4 | |
GitLab GitLab | =11.3.0 | |
GitLab GitLab | =11.3.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.