2 matches found
CVE-2019-5467
An input validation and output encoding issue was discovered in the GitLab CE/EE wiki pages feature which could result in a persistent XSS. This vulnerability was addressed in 12.1.2, 12.0.4, and 11.11.6...
CVE-2019-5467
GitLab CE/EE Wiki pages were affected by a stored XSS due to an input validation and output encoding flaw in how Wiki Markdown links were processed. The issue could allow a persistent XSS when a wiki page is crafted with crafted input (as demonstrated by stored-XSS scenarios in the HackerOne repo...