95 matches found
GitLab: Guest Users can create issues for Sentry errors and track their status
Summary According to the permission docs and Error Tracking Docs , only User with role Reporter or more can see or modify the Error Tracking details. However, the "Create Issue" allows a particular Guest user to create a reference issue for the error and track its status whenever some other user...
CVE-2020-13336
An issue has been discovered in GitLab affecting versions from 11.8 before 12.10.13. GitLab was vulnerable to a stored XSS by in the error tracking feature...
CVE-2020-13336
An issue has been discovered in GitLab affecting versions from 11.8 before 12.10.13. GitLab was vulnerable to a stored XSS by in the error tracking feature...
Cross site scripting
An issue has been discovered in GitLab affecting versions from 11.8 before 12.10.13. GitLab was vulnerable to a stored XSS by in the error tracking feature...
UBUNTU-CVE-2020-13336
An issue has been discovered in GitLab affecting versions from 11.8 before 12.10.13. GitLab was vulnerable to a stored XSS by in the error tracking feature...
CVE-2020-13336
An issue has been discovered in GitLab affecting versions from 11.8 before 12.10.13. GitLab was vulnerable to a stored XSS by in the error tracking feature...
CVE-2020-13336
Removed by vendor...
CVE-2020-13336
CVE-2020-13336 affects GitLab versions 11.8 up to, but not including, 12.10.13. The issue is a stored XSS via the error tracking feature. Multiple connected sources confirm the affected range and the vulnerability class. The documents do not provide exploitation details or a disclosed remediation...
CVE-2020-13336
An issue has been discovered in GitLab affecting versions from 11.8 before 12.10.13. GitLab was vulnerable to a stored XSS by in the error tracking feature...
PT-2020-13477 · Gitlab · Gitlab
Name of the Vulnerable Software and Affected Versions: GitLab versions 11.8 through 12.10.13 Description: An issue has been discovered in GitLab, where it was vulnerable to a stored XSS in the error tracking feature. Recommendations: For versions 11.8 through 12.10.13, update to version 12.10.13 ...
[SECURITY] Fedora 25 Update: perltidy-20170521-1.fc25
Perltidy is a Perl script that indents and re-formats Perl scripts to make them easier to read. If you write Perl scripts, or spend much time reading them, you will probably find it useful. The formatting can be controlled with command line parameters. The default parameter settings approximately...
[SECURITY] Fedora 24 Update: perltidy-20170521-1.fc24
Perltidy is a Perl script that indents and re-formats Perl scripts to make them easier to read. If you write Perl scripts, or spend much time reading them, you will probably find it useful. The formatting can be controlled with command line parameters. The default parameter settings approximately...
[SECURITY] Fedora 26 Update: perltidy-20170521-1.fc26
Perltidy is a Perl script that indents and re-formats Perl scripts to make them easier to read. If you write Perl scripts, or spend much time reading them, you will probably find it useful. The formatting can be controlled with command line parameters. The default parameter settings approximately...
The vulnerability of the MantisBT error tracking system allows a hacker to execute arbitrary HTML or JavaScript code.
The vulnerability of the MantisBT error tracking system’s component exists due to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary HTML or JavaScript code through changes to the windowtitle element...
[SECURITY] Fedora 19 Update: perltidy-20130922-1.fc19
Perltidy is a Perl script which indents and reformats Perl scripts to make them easier to read. If you write Perl scripts, or spend much time reading them, you will probably find it useful. The formatting can be controlled with command line parameters. The default parameter settings approximately...