Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2024/05/17 12:0 a.m.17 views

GitLab 9.5 < 13.11.6 / 13.12 < 13.12.6 / 14.0 < 14.0.2 (CVE-2021-22232)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - HTML injection was possible via the full name field before versions 13.11.6, 13.12.6, and 14.0.2 in GitLab CE CVE-2021-22232 Note that Nessus has not tested for this issue but has instead relied only ...

5.4CVSS5.7AI score0.00747EPSS
Exploits0References4
OSV
OSV
added 2021/07/06 9:15 p.m.23 views

CVE-2021-22232

HTML injection was possible via the full name field before versions 13.11.6, 13.12.6, and 14.0.2 in GitLab CE...

5.4CVSS6.6AI score0.00747EPSS
Exploits0References3
NVD
NVD
added 2021/07/06 9:15 p.m.29 views

CVE-2021-22232

HTML injection was possible via the full name field before versions 13.11.6, 13.12.6, and 14.0.2 in GitLab CE...

5.4CVSS0.00747EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2021/07/06 9:15 p.m.23 views

CVE-2021-22232

HTML injection was possible via the full name field before versions 13.11.6, 13.12.6, and 14.0.2 in GitLab CE...

5.4CVSS6.1AI score0.00747EPSS
Exploits0References4
CVE
CVE
added 2021/07/06 8:43 p.m.91 views

CVE-2021-22232

CVE-2021-22232 describes an HTML injection vulnerability in GitLab CE where the full name field could be exploited. Affected are GitLab CE prior to versions 13.11.6, 13.12.6, and 14.0.2. Root cause: input in the full name field not properly sanitized. Impact: HTML injection; exact exploitation de...

5.4CVSS5.5AI score0.00747EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2021/07/06 8:43 p.m.22 views

CVE-2021-22232

Removed by vendor...

5.4CVSS6AI score0.00747EPSS
Exploits0
Cvelist
Cvelist
added 2021/07/06 8:43 p.m.22 views

CVE-2021-22232

HTML injection was possible via the full name field before versions 13.11.6, 13.12.6, and 14.0.2 in GitLab CE...

3.5CVSS5.9AI score0.00747EPSS
Exploits0References3
Rows per page
Query Builder