Lucene search
K

9 matches found

RedhatCVE
RedhatCVE
added 2026/01/07 9:8 a.m.9 views

CVE-2024-2279

An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.7 to 16.8.6 all versions starting from 16.9 before 16.9.4, all versions starting from 16.10 before 16.10.2. Using the autocomplete for issues references feature a crafted payload may lead to a stored XSS, allowin...

8.7CVSS6.4AI score0.0058EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2024/07/10 12:0 a.m.17 views

openSUSE: Security Advisory for libxml2 (SUSE-SU-2024:2279-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.9AI score0.02298EPSS
Exploits1References2
Circl
Circl
added 2024/04/13 12:3 p.m.4 views

CVE-2024-2279

creationtimestamp| type| source ---|---|--- 2024-04-13 12:03:56+00:00| seen| https://t.me/arpsyndicate/4643 2025-05-22 04:42:58+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/17231...

8.7CVSS4.8AI score0.0058EPSS
Exploits1References2
NVD
NVD
added 2024/04/12 1:15 a.m.16 views

CVE-2024-2279

An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.7 to 16.8.6 all versions starting from 16.9 before 16.9.4, all versions starting from 16.10 before 16.10.2. Using the autocomplete for issues references feature a crafted payload may lead to a stored XSS, allowin...

8.7CVSS8.4AI score0.0058EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/04/12 12:53 a.m.26 views

CVE-2024-2279 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab

An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.7 to 16.8.6 all versions starting from 16.9 before 16.9.4, all versions starting from 16.10 before 16.10.2. Using the autocomplete for issues references feature a crafted payload may lead to a stored XSS, allowin...

8.7CVSS8.5AI score0.0058EPSS
Exploits1References2
CVE
CVE
added 2024/04/12 12:53 a.m.76 views

CVE-2024-2279

CVE-2024-2279 affects GitLab CE/EE across multiple release lines: 16.7–16.8.6; 16.9 prior to 16.9.4; 16.10 prior to 16.10.2. The issue arises from the autocomplete for issues references feature, where a crafted payload can trigger a stored XSS, enabling an attacker to perform arbitrary actions on...

8.7CVSS6.2AI score0.0058EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/04/12 12:53 a.m.19 views

CVE-2024-2279 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab

An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.7 to 16.8.6 all versions starting from 16.9 before 16.9.4, all versions starting from 16.10 before 16.10.2. Using the autocomplete for issues references feature a crafted payload may lead to a stored XSS, allowin...

8.7CVSS8.3AI score0.0058EPSS
Exploits1References2
Debian CVE
Debian CVE
added 2024/04/12 12:53 a.m.22 views

CVE-2024-2279

Removed by vendor...

8.7CVSS5.8AI score0.0058EPSS
Exploits1
UbuntuCve
UbuntuCve
added 2024/04/12 12:0 a.m.31 views

CVE-2024-2279

An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.7 to 16.8.6 all versions starting from 16.9 before 16.9.4, all versions starting from 16.10 before 16.10.2. Using the autocomplete for issues references feature a crafted payload may lead to a stored XSS, allowin...

8.7CVSS5.9AI score0.0058EPSS
Exploits1References1
Rows per page
Query Builder