2 matches found
CVE-2022-2500
CVE-2022-2500 affects GitLab CE/EE and is a stored cross-site scripting (XSS) flaw in job error messages. Affected versions include all before 15.0.5, 15.1 prior to 15.1.4, and 15.2 prior to 15.2.1. The flaw allows attackers to perform arbitrary actions on behalf of victims at the client side. Th...
GitLab 0.0 < 15.0.5 / 15.1 < 15.1.4 / 15.2 < 15.2.1 (CVE-2022-2500)
The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - A cross-site scripting issue has been discovered in GitLab CE/EE affecting all versions before 15.0.5, 15.1 prior to 15.1.4, and 15.2 prior to 15.2.1. A stored XSS flaw in job error messages allows...