Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

12 matches found

RedhatCVE
RedhatCVEadded 2026/01/09 9:19 a.m.2 views

CVE-2021-22220

An issue has been discovered in GitLab affecting all versions starting with 13.10. GitLab was vulnerable to a stored XSS in blob viewer of notebooks...

6.1CVSS5.5AI score0.0009EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2021-9366

Malicious code in bioql PyPI...

6.1CVSS5.8AI score0.0009EPSS
Exploits0References4
FreeBSD
FreeBSDadded 2025/08/13 12:0 a.m.5 views

Gitlab -- vulnerabilities

Gitlab reports: Cross-site scripting issue in blob viewer impacts GitLab CE/EE Cross-site scripting issue in labels impacts GitLab CE/EE Cross-site scripting issue in Workitem impacts GitLab CE/EE Improper Handling of Permissions issue in project API impacts GitLab CE/EE Incorrect Privilege...

8.7CVSS6.9AI score0.00097EPSS
Exploits0References1
OSV
OSVadded 2024/03/06 11:19 a.m.20 views

BIT-GITLAB-2021-22220

An issue has been discovered in GitLab affecting all versions starting with 13.10. GitLab was vulnerable to a stored XSS in blob viewer of notebooks...

6.1CVSS5.5AI score0.0009EPSS
Exploits0References4
OSV
OSVadded 2021/06/08 8:15 p.m.15 views

CVE-2021-22220

An issue has been discovered in GitLab affecting all versions starting with 13.10. GitLab was vulnerable to a stored XSS in blob viewer of notebooks...

5.4CVSS5.4AI score0.0009EPSS
Exploits0References3
NVD
NVDadded 2021/06/08 8:15 p.m.15 views

CVE-2021-22220

An issue has been discovered in GitLab affecting all versions starting with 13.10. GitLab was vulnerable to a stored XSS in blob viewer of notebooks...

6.1CVSS0.0009EPSS
Exploits0References3
UbuntuCve
UbuntuCveadded 2021/06/08 8:15 p.m.18 views

CVE-2021-22220

An issue has been discovered in GitLab affecting all versions starting with 13.10. GitLab was vulnerable to a stored XSS in blob viewer of notebooks...

6.1CVSS6AI score0.0009EPSS
Exploits0References1
Prion
Prionadded 2021/06/08 8:15 p.m.13 views

Cross site scripting

An issue has been discovered in GitLab affecting all versions starting with 13.10. GitLab was vulnerable to a stored XSS in blob viewer of notebooks...

3.5CVSS5.2AI score0.0009EPSS
Exploits0References3Affected Software1
CVE
CVEadded 2021/06/08 7:5 p.m.57 views

CVE-2021-22220

CVE-2021-22220 affects GitLab, with a stored XSS in the blob viewer of notebooks. Affected versions are all starting with 13.10 up to 13.12.2 (upstream) and 13.12.2-1 (Arch Linux package). The issue is a client-side script injection vulnerability in the blob viewer that can impact users viewing n...

6.1CVSS5.2AI score0.0009EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessusadded 2021/06/03 12:0 a.m.28 views

FreeBSD : Gitlab -- Multiple Vulnerabilities (5f52d646-c31f-11eb-8dcf-001b217b3468)

Gitlab reports : Stealing GitLab OAuth access tokens using XSLeaks in Safari Denial of service through recursive triggered pipelines Unauthenticated CI lint API may lead to information disclosure and SSRF Server-side DoS through rendering crafted Markdown documents Issue and merge request length...

7.7CVSS6.8AI score0.00171EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2021/01/05 12:0 a.m.3 views

PT-2021-4088 · Gitlab · Gitlab

Name of the Vulnerable Software and Affected Versions: GitLab versions 13.10 and later Description: The issue is related to a stored XSS in the blob viewer of notebooks, which can be exploited by a remote attacker to impact data integrity. This is due to the lack of protection measures for the we...

6.4CVSS5.6AI score0.0009EPSS
Exploits0References11
Hacker One
Hacker Oneadded 2020/02/27 9:46 p.m.39 views

GitLab: Stored XSS in blob viewer

Summary I found a Stored-XSS in blob viewer when viewing a json file. In particular, when viewing an openapi file, openapiviewer is called to transfer the file's data to SwaggerUIBundle to render. SwaggerUIBundle does its job when rending graphical representation of the openapi's content. It also...

1.1AI score
Exploits0
Rows per page
Query Builder