6.4 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
29.6%
An issue has been discovered in GitLab CE/EE affecting all versions starting from 14.0. It was possible to exploit a stored cross-site-scripting via a specifically crafted default branch name.
gitlab.com/gitlab-org/cves/-/blob/master/2021/CVE-2021-22241.json
gitlab.com/gitlab-org/gitlab/-/issues/336460
hackerone.com/reports/1256777