Lucene search
GitLabCVELIST:CVE-2020-13330HistorySep 29, 2020 - 5:41 p.m.
CVE-2020-13330
2020-09-2917:41:40
GitLab
www.cve.org
7
gitlab
vulnerability
version 12.10.13
stored xss
bitbucket project import
cve-2020-13330
CVSS3
4.4
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:N
AI Score
4.9
Confidence
High
EPSS
0.001
Percentile
24.8%
An issue has been discovered in GitLab affecting versions prior to 12.10.13. GitLab was vulnerable to a stored XSS in import the Bitbucket project feature.
CNA Affected
[
{
"product": "GitLab",
"vendor": "GitLab",
"versions": [
{
"status": "affected",
"version": ">=11.2, <12.10.13"
}
]
}
]Related
ubuntucve
ubuntucve
CVE-2020-13330
2020-09-30 00:00:00
nvd
nvd
CVE-2020-13330
2020-09-30 18:15:19
osv
osv
CVE-2020-13330
2020-09-30 18:15:19
BIT-gitlab-2020-13330
2024-03-06 11:21:59
nessus
nessus
GitLab 11.2 < 12.10.13 (CVE-2020-13330)
2024-05-17 00:00:00
debiancve
debiancve
CVE-2020-13330
2020-09-30 18:15:19
cve
cve
CVE-2020-13330
2020-09-30 18:15:19
prion
prion
Design/Logic Flaw
2020-09-30 18:15:00
CVSS3
4.4
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:N
AI Score
4.9
Confidence
High
EPSS
0.001
Percentile
24.8%
Related for CVELIST:CVE-2020-13330