Описание
An issue has been discovered in GitLab CE/EE affecting all versions from 17.2 before 17.6.4, 17.7 before 17.7.3, and 17.8 before 17.8.1. Improper rendering of certain file types lead to cross-site scripting.
Ссылки
- Broken Link
- Permissions Required
Уязвимые конфигурации
Одно из
EPSS
8.7 High
CVSS3
6.1 Medium
CVSS3
Дефекты
Связанные уязвимости
An issue has been discovered in GitLab CE/EE affecting all versions from 17.2 before 17.6.4, 17.7 before 17.7.3, and 17.8 before 17.8.1. Improper rendering of certain file types lead to cross-site scripting.
An issue has been discovered in GitLab CE/EE affecting all versions fr ...
An issue has been discovered in GitLab CE/EE affecting all versions from 17.2 before 17.6.4, 17.7 before 17.7.3, and 17.8 before 17.8.1. Improper rendering of certain file types lead to cross-site scripting.
Уязвимость программной платформы на базе git для совместной работы над кодом GitLab EE/ CE, связанная с недостаточной очисткой данных, позволяющая нарушителю провести атаку межсайтового скриптинга (XSS)
EPSS
8.7 High
CVSS3
6.1 Medium
CVSS3