An issue has been discovered in GitLab affecting versions from 12.10 to 12.10.12 that allowed for a stored XSS payload to be added as a group name.
CPE | Name | Operator | Version |
---|---|---|---|
gitlab | eq | 12.10.0-ee | |
gitlab | eq | 12.10.5-ee | |
gitlab | eq | 12.10.3-ee | |
gitlab | eq | 12.10.9-ee | |
gitlab | eq | 12.10.7-ee | |
gitlab | eq | 12.10.10-ee | |
gitlab | eq | 12.10.1-ee | |
gitlab | eq | 12.10.4-ee | |
gitlab | eq | 12.10.6-ee | |
gitlab | eq | 12.10.2-ee |