2 matches found
CVE-2019-15586
A XSS exists in Gitlab CE/EE 12.1.10 in the Mermaid plugin...
CVE-2019-15586
CVE-2019-15586 is a cross-site scripting vulnerability in the GitLab Mermaid plugin for GitLab CE/EE, affecting versions prior to 12.1.10. The root cause is insufficient validation of client-side data, enabling an attacker to execute arbitrary client-side scripts within affected instances. Practi...