Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-p27q-qvwx-7mg5

Опубликовано: 14 нояб. 2024
Источник: github
Github: Не прошло ревью
CVSS3: 6.1

Описание

An issue has been discovered in GitLab CE/EE affecting all versions from 16 before 17.3.7, 17.4 before 17.4.4, and 17.5 before 17.5.2. The vulnerability could allow an attacker to inject malicious JavaScript code in Analytics Dashboards through a specially crafted URL.

An issue has been discovered in GitLab CE/EE affecting all versions from 16 before 17.3.7, 17.4 before 17.4.4, and 17.5 before 17.5.2. The vulnerability could allow an attacker to inject malicious JavaScript code in Analytics Dashboards through a specially crafted URL.

EPSS

Процентиль: 78%
0.01151
Низкий

6.1 Medium

CVSS3

Дефекты

CWE-79

Связанные уязвимости

CVSS3: 6.1
ubuntu
9 месяцев назад

An issue has been discovered in GitLab CE/EE affecting all versions from 16 before 17.3.7, 17.4 before 17.4.4, and 17.5 before 17.5.2. The vulnerability could allow an attacker to inject malicious JavaScript code in Analytics Dashboards through a specially crafted URL.

CVSS3: 6.1
nvd
9 месяцев назад

An issue has been discovered in GitLab CE/EE affecting all versions from 16 before 17.3.7, 17.4 before 17.4.4, and 17.5 before 17.5.2. The vulnerability could allow an attacker to inject malicious JavaScript code in Analytics Dashboards through a specially crafted URL.

CVSS3: 6.1
debian
9 месяцев назад

An issue has been discovered in GitLab CE/EE affecting all versions fr ...

CVSS3: 6.1
fstec
9 месяцев назад

Уязвимость программной платформы на базе git для совместной работы над кодом GitLab EE/ CE, связанная с непринятием мер по защите структуры веб-страницы, позволяющая нарушителю внедрить произвольный javascript-код

EPSS

Процентиль: 78%
0.01151
Низкий

6.1 Medium

CVSS3

Дефекты

CWE-79