CVE-2017-8778

2017-05-04T11:29:00
ID CVE-2017-8778
Type cve
Reporter NVD
Modified 2017-05-15T14:19:52

Description

GitLab before 8.14.9, 8.15.x before 8.15.6, and 8.16.x before 8.16.5 has XSS via a SCRIPT element in an issue attachment or avatar that is an SVG document.