Total vulnerabilities in the database
An issue was discovered in GitLab Community and Enterprise Edition 8.4 through 11.11. A malicious user could execute JavaScript code on notes by importing a specially crafted project file. It allows XSS.
Software | From | Fixed in |
---|---|---|
gitlab / gitlab | 8.4.0 | 11.11.0.x |