2 matches found
CVE-2022-3572
CVE-2022-3572 describes a cross-site scripting vulnerability in GitLab CE/EE. The issue affects GitLab versions 13.5 through 15.3.5, 15.4 through 15.4.4, and 15.5 through 15.5.2, and arises from how the Jira Connect integration is configured, enabling a reflected XSS that can perform arbitrary ac...
FreeBSD : Gitlab -- Multiple Vulnerabilities (3cde510a-7135-11ed-a28b-bff032704f00)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 3cde510a-7135-11ed-a28b-bff032704f00 advisory. - Gitlab reports: DAST API scanner exposes Authorization headers in vulnerabilities Group IP...