GitLab: Persistent XSS - Deleting a project (No Longer Vulnerable in 10.7)

Summary: When deleting a project in gitlab, it is possible to trigger a XSS with a malicious user name string. Description: I'd like to first point out that this is no longer vulnerable, but I filed a report anyways since it was never discovered. It looks like this was fixed on "accident"...

Kanboard Design Vulnerability (CNVD-2017-30952)

Kanboard is a French software developer Frederic Guillot developed a set of open source visualization task board software. The software supports customization of the panel according to the business, task dragging and so on. A security vulnerability exists in Kanboard versions prior to 1.0.47. An...