EPSS
Percentile
26.7%
Gitlab is vulnerable to Cross-Site Scripting (XSS). An attacker to perform cross-site scripting to other users via importing a malicious project.
gitlab.com/gitlab-org/cves/-/blob/master/2020/CVE-2020-26407.json
gitlab.com/gitlab-org/gitlab/-/issues/212630
hackerone.com/reports/832117
security-tracker.debian.org/tracker/CVE-2020-26407