3 matches found
CVE-2020-13285
For GitLab before 13.0.12, 13.1.6, 13.2.3 a cross-site scripting XSS vulnerability exists in the issue reference number tooltip...
GitLab 12.9 < 13.0.12 / 13.1 < 13.1.6 / 13.2 < 13.2.3 (CVE-2020-13285)
The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - For GitLab before 13.0.12, 13.1.6, 13.2.3 a cross-site scripting XSS vulnerability exists in the issue reference number tooltip. CVE-2020-13285 Note that Nessus has not tested for this issue but has...
CVE-2020-13285
GitLab contains a cross-site scripting (XSS) vulnerability in the issue reference number tooltip affecting GitLab versions prior to 13.0.12, 13.1.6, and 13.2.3. Root cause is described as insufficient validation of client-side data in the tooltip. Remediation per connected sources: upgrade to at ...