2 matches found
GitLab 12.10 < 12.10.13 (CVE-2020-13337)
The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab affecting versions from 12.10 to 12.10.12 that allowed for a stored XSS payload to be added as a group name. CVE-2020-13337 Note that Nessus has not tested for...
CVE-2020-13337
CVE-2020-13337 affects GitLab versions 12.10 through 12.10.12 and allows a stored XSS payload to be added as a group name. The root cause is a stored XSS vulnerability in group-name handling, as disclosed across multiple sources in the connected documents. Remediation is to upgrade to GitLab 12.1...