Lucene search
K

14 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 11:19 a.m.7 views

CVE-2021-22199

An issue has been discovered in GitLab affecting all versions starting with 12.9. GitLab was vulnerable to a stored XSS if scoped labels were used...

5.4CVSS5.5AI score0.00793EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2021-9345

Malicious code in bioql PyPI...

5.4CVSS5.5AI score0.00793EPSS
Exploits0References4
OSV
OSV
added 2025/08/13 5:26 p.m.2 views

CVE-2025-7739 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab

An issue has been discovered in GitLab CE/EE affecting all versions from 18.2 before 18.2.2 that, under certain conditions, could have allowed authenticated users to achieve stored cross-site scripting by injecting malicious HTML content in scoped label descriptions...

8.7CVSS5.8AI score0.00293EPSS
Exploits0References5
OSV
OSV
added 2024/03/06 11:20 a.m.19 views

BIT-GITLAB-2021-22199

An issue has been discovered in GitLab affecting all versions starting with 12.9. GitLab was vulnerable to a stored XSS if scoped labels were used...

5.4CVSS4.9AI score0.00793EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/01/02 12:0 a.m.40 views

GitLab 12.9 < 13.8.7 / 13.9.0 < 13.9.5 / 13.10 < 13.10.1 (CVE-2021-22199)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab affecting all versions starting with 12.9. GitLab was vulnerable to a stored XSS if scoped labels were used. CVE-2021-22199 Note that Nessus has not tested for...

5.4CVSS5.5AI score0.00793EPSS
Exploits0References4
Veracode
Veracode
added 2023/08/06 2:28 p.m.16 views

Cross-site Scripting (XSS)

gitlab is vulnerable to Cross-site Scripting XSS. An attacker can inject and execute malicious javascript through the scoped labels...

5.4CVSS6.6AI score0.00793EPSS
Exploits0References4Affected Software1
Hacker One
Hacker One
added 2022/09/07 9:13 a.m.33 views

GitLab: Bypass: Stored-XSS with CSP-bypass via scoped labels' color

A Stored-XSS with CSP-bypass vulnerability was discovered in GitLab that allowed attackers to execute arbitrary actions on behalf of victims at the client side. The vulnerability was caused by a missing mitigation for scoped labels, which allowed attackers to create a Stored-XSS with CSP-bypass o...

7.4AI score
Exploits0
OSV
OSV
added 2021/04/22 10:15 p.m.13 views

CVE-2021-22199

An issue has been discovered in GitLab affecting all versions starting with 12.9. GitLab was vulnerable to a stored XSS if scoped labels were used...

5.4CVSS5.4AI score0.00793EPSS
Exploits0References3
Prion
Prion
added 2021/04/22 10:15 p.m.16 views

Cross site scripting

An issue has been discovered in GitLab affecting all versions starting with 12.9. GitLab was vulnerable to a stored XSS if scoped labels were used...

3.5CVSS4.9AI score0.00793EPSS
Exploits0References3Affected Software1
UbuntuCve
UbuntuCve
added 2021/04/22 10:15 p.m.27 views

CVE-2021-22199

An issue has been discovered in GitLab affecting all versions starting with 12.9. GitLab was vulnerable to a stored XSS if scoped labels were used...

5.4CVSS6AI score0.00793EPSS
Exploits0References4
OSV
OSV
added 2021/04/22 10:15 p.m.1 views

UBUNTU-CVE-2021-22199

An issue has been discovered in GitLab affecting all versions starting with 12.9. GitLab was vulnerable to a stored XSS if scoped labels were used...

5.4CVSS5.7AI score0.00793EPSS
Exploits0References5
Cvelist
Cvelist
added 2021/04/22 9:56 p.m.20 views

CVE-2021-22199

An issue has been discovered in GitLab affecting all versions starting with 12.9. GitLab was vulnerable to a stored XSS if scoped labels were used...

3.5CVSS5.2AI score0.00793EPSS
Exploits0References3
CVE
CVE
added 2021/04/22 9:56 p.m.58 views

CVE-2021-22199

CVE-2021-22199 (GitLab) affects all GitLab versions starting with 12.9 and later. The issue is a stored cross-site scripting (XSS) vulnerability that can be triggered when scoped labels are used. The available sources in the connected documents describe the flaw and its impact as a stored XSS in ...

5.4CVSS4.9AI score0.00793EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2021/04/22 12:0 a.m.3 views

PT-2021-14910 · Gitlab · Gitlab

Name of the Vulnerable Software and Affected Versions: GitLab versions 12.9 and later Description: An issue has been discovered in GitLab where it is vulnerable to a stored XSS if scoped labels were used. Recommendations: For GitLab versions 12.9 and later, at the moment, there is no information...

5.4CVSS4.9AI score0.00793EPSS
Exploits0References10
Rows per page
Query Builder