VYPR
Unrated severityNVD Advisory· Published Oct 2, 2020· Updated Aug 4, 2024

CVE-2020-13337

CVE-2020-13337

Description

An issue has been discovered in GitLab affecting versions from 12.10 to 12.10.12 that allowed for a stored XSS payload to be added as a group name.

Affected products

3
  • GitLab Inc./GitLabllm-fuzzy2 versions
    >=12.10, <=12.10.12+ 1 more
    • (no CPE)range: >=12.10, <=12.10.12
    • (no CPE)range: >=12.10, <12.10.13
  • osv-coords
    Range: >= 12.10.0, < 12.10.13

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.