Описание
Inaccurate display of Snippet files containing special characters in all versions of GitLab CE/EE allows an attacker to create Snippets with misleading content which could trick unsuspecting users into executing arbitrary commands
Ссылки
- Vendor Advisory
- Broken LinkVendor Advisory
- Permissions RequiredThird Party Advisory
- Vendor Advisory
- Broken LinkVendor Advisory
- Permissions RequiredThird Party Advisory
Уязвимые конфигурации
Одно из
EPSS
6.5 Medium
CVSS3
8.8 High
CVSS3
6.8 Medium
CVSS2
Дефекты
Связанные уязвимости
Inaccurate display of Snippet files containing special characters in all versions of GitLab CE/EE allows an attacker to create Snippets with misleading content which could trick unsuspecting users into executing arbitrary commands
Inaccurate display of Snippet files containing special characters in a ...
Inaccurate display of Snippet files containing special characters in all versions of GitLab CE/EE allows an attacker to create Snippets with misleading content which could trick unsuspecting users into executing arbitrary commands
EPSS
6.5 Medium
CVSS3
8.8 High
CVSS3
6.8 Medium
CVSS2