Lucene search
GoogleOSV:BIT-GITLAB-2022-1190HistoryMar 06, 2024 - 11:16 a.m.
BIT-gitlab-2022-1190
2024-03-0611:16:13
Google
osv.dev
4
gitlab ce
gitlab ee
user input
stored xss
milestone references
security vulnerability
Improper handling of user input in GitLab CE/EE versions 8.3 prior to 14.7.7, 14.8 prior to 14.8.5, and 14.9 prior to 14.9.2 allowed an attacker to exploit a stored XSS by abusing multi-word milestone references in issue descriptions, comments, etc.
Related
prion
prion
Input validation
2022-04-04 20:15:00
ubuntucve
ubuntucve
CVE-2022-1190
2022-04-04 00:00:00
debiancve
debiancve
CVE-2022-1190
2022-04-04 20:15:00
nessus
nessus
GitLab 8.3 < 14.7.7 / 14.8 < 14.8.5 / 14.9 < 14.9.2 (CVE-2022-1190)
2022-04-18 00:00:00
cve
cve
CVE-2022-1190
2022-04-04 20:15:00
checkpoint_advisories
checkpoint_advisories
GitLab Cross-site Scripting (CVE-2022-1190)
2022-07-11 00:00:00
osv
osv
CVE-2022-1190
2022-04-04 20:15:10
cvelist
cvelist
CVE-2022-1190
2022-04-04 19:46:15
veracode
veracode
Cross-Site Scripting (XSS)
2023-07-22 22:07:36
openvas
openvas
GitLab 8.3.x < 14.7.7, 14.8.x < 14.8.5, 14.9.x < 14.9.2 XSS Vulnerability
2022-04-05 00:00:00
thn
thn
avleonov
avleonov
Gitlab OmniAuth Static Passwords and stored XSS
2022-04-04 16:42:07
wallarmlab
wallarmlab
GitLab Security Issues: Six Months of Vulnerabilities
2022-08-01 13:31:27
freebsd
freebsd
Gitlab -- multiple vulnerabilities
2022-03-31 00:00:00
5.5 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
29.0%
Related for OSV:BIT-GITLAB-2022-1190