Lucene search

K
cnvdChina National Vulnerability DatabaseCNVD-2021-91184
HistoryNov 01, 2021 - 12:00 a.m.

GitLab Cross-Site Scripting Vulnerability (CNVD-2021-91184)

2021-11-0100:00:00
China National Vulnerability Database
www.cnvd.org.cn
17
gitlab
open source
software development
version control
issue tracking
code review
ci/cd
cross-site scripting
vulnerability
exploited
attackers
javascript code
arbitrary

EPSS

0.001

Percentile

42.0%

GitLab is an open source, end-to-end software development platform from GitLab, Inc. with built-in version control, issue tracking, code review, CI/CD (continuous integration and continuous delivery), and other features.GitLab CE/EE is vulnerable to a cross-site scripting vulnerability that could be exploited by attackers to execute arbitrary JavaScript code on behalf of victims.

EPSS

0.001

Percentile

42.0%