CVE-2020-13262

2020-06-19T22:15:00
ID CVE-2020-13262
Type cve
Reporter cve@mitre.org
Modified 2020-06-26T14:32:00

Description

Client-Side code injection through Mermaid markup in GitLab CE/EE 12.9 and later through 13.0.1 allows a specially crafted Mermaid payload to PUT requests on behalf of other users via clicking on a link