CVE-2019-15586

2020-01-2802:14:59

CWE-79

hackerone

www.cve.org

0.001 Low

EPSS

Percentile

36.1%

JSON

A XSS exists in Gitlab CE/EE < 12.1.10 in the Mermaid plugin.

CNA Affected

[
  {
    "product": "Gitlab CE/EE",
    "vendor": "GitLab",
    "versions": [
      {
        "status": "affected",
        "version": "before 12.1.10"
      }
    ]
  }
]

References

about.gitlab.com/blog/2019/09/30/security-release-gitlab-12-dot-3-dot-2-released/

hackerone.com/reports/645043

0.001 Low

EPSS

Percentile

36.1%

JSON

Related for CVELIST:CVE-2019-15586