Lucene search

CVE-2020-26407

🗓️ 10 Dec 2020 06:13:15Reported by [email protected]Type

XSS vulnerability in Gitlab CE/EE 12.4-13.6.

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 11
Prion	Cross site scripting	10 Dec 202006:15	–	prion
UbuntuCve	CVE-2020-26407	10 Dec 202000:00	–	ubuntucve
Debian CVE	CVE-2020-26407	10 Dec 202006:15	–	debiancve
Veracode	Cross-Site Scripting (XSS)	9 Dec 202009:00	–	veracode
OSV	BIT-gitlab-2020-26407	6 Mar 202411:21	–	osv
OSV	CVE-2020-26407	10 Dec 202006:15	–	osv
Cvelist	CVE-2020-26407	10 Dec 202005:16	–	cvelist
CVE	CVE-2020-26407	10 Dec 202006:15	–	cve
Tenable Nessus	GitLab 12.4 < 13.4.7 / 13.5 < 13.5.5 / 13.6 < 13.6.2 (CVE-2020-26407)	17 May 202400:00	–	nessus
Tenable Nessus	FreeBSD : Gitlab -- Multiple vulnerabilities (5d5e5cda-38e6-11eb-bbbf-001b217b3468)	8 Dec 202000:00	–	nessus

Nvd

Node

gitlab gitlabRange12.4.0–13.4.7community

gitlab gitlabRange12.4.0–13.4.7enterprise

gitlab gitlabRange13.5.0–13.5.5community

gitlab gitlabRange13.5.0–13.5.5enterprise

gitlab gitlabRange13.6.0–13.6.2community

gitlab gitlabRange13.6.0–13.6.2enterprise

Source	Link
gitlab	www.gitlab.com/gitlab-org/cves/-/blob/master/2020/CVE-2020-26407.json
gitlab	www.gitlab.com/gitlab-org/gitlab/-/issues/212630
hackerone	www.hackerone.com/reports/832117

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

10 Dec 2020 06:15Current

5.1Medium risk

Vulners AI Score5.1

CVSS23.5

CVSS35.4

EPSS0.00097

CWE-79