Unrated severityNVD Advisory· Published Apr 15, 2023· Updated Feb 6, 2025
CVE-2018-17537
CVE-2018-17537
Description
An issue was discovered in GitLab Community and Enterprise Edition before 11.1.7, 11.2.x before 11.2.4, and 11.3.x before 11.3.1. blog-viewer has stored XSS during repository browsing, if package.json exists. .
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
6- GitLab/GitLab Community and Enterprise Editiondescription
- Range: <11.1.7, <11.2.4, <11.3.1
- osv-coords4 versionspkg:apk/chainguard/gitlab-operatorpkg:apk/chainguard/gitlab-operator-chartspkg:apk/chainguard/gitlab-operator-compatpkg:apk/chainguard/gitlab-operator-fips
< 0+ 3 more
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.