GitLab is an open source, end-to-end software development platform from GitLab, Inc. with built-in version control, issue tracking, code review, CI/CD (continuous integration and continuous delivery), and other features.A cross-site scripting vulnerability exists in GitLab CE/EE, which stems from the fact that the program is vulnerable to injection via the Swagger UI feature. An attacker could exploit this vulnerability to inject malicious code.
CPE | Name | Operator | Version |
---|---|---|---|
GitLab GitLab CE/EE >=14.4, | lt | 14.4.4 | |
GitLab CE/EE >=12.6, | lt | 14.3.6 | |
GitLab CE/EE >=14.5, | lt | 14.5.2 |