Unrated severityNVD Advisory· Published Mar 10, 2020· Updated Aug 4, 2024
CVE-2019-12445
CVE-2019-12445
Description
An issue was discovered in GitLab Community and Enterprise Edition 8.4 through 11.11. A malicious user could execute JavaScript code on notes by importing a specially crafted project file. It allows XSS.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- GitLab/GitLab Community and Enterprise Editiondescription
- Range: 8.4 - 11.11
- Range: 8.4 - 11.11
Patches
Vulnerability mechanics
References
2- about.gitlab.com/blog/categories/releases/mitrex_refsource_MISC
- about.gitlab.com/releases/2019/06/03/security-release-gitlab-11-dot-11-dot-1-released/mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.