Cross site scripting

2018-03-2120:29:00

PRIOn knowledge base

www.prio-n.com

6.1 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

49.4%

JSON

Gitlab Community Edition version 10.2.4 is vulnerable to lack of input validation in the CI job component resulting in persistent cross site scripting.

CPENameOperatorVersion
debian_linuxeq9.0
gitlabge10.3.0
gitlable10.3.3
gitlabge10.2.0
gitlable10.2.5
gitlabge10.3.0
gitlable10.3.3
gitlabge10.2.0
gitlable10.2.5
gitlabge10.1.0