VYPR
High severity8.7NVD Advisory· Published Aug 25, 2021· Updated Jun 17, 2026

CVE-2021-22242

CVE-2021-22242

Description

Insufficient input sanitization in Mermaid markdown in GitLab CE/EE version 11.4 and up allows an attacker to exploit a stored cross-site scripting vulnerability via a specially-crafted markdown

Affected products

3

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.