VYPR
Unrated severityNVD Advisory· Published Oct 5, 2021· Updated Aug 4, 2024

CVE-2021-39878

CVE-2021-39878

Description

A stored Reflected Cross-Site Scripting vulnerability in the Jira integration in GitLab version 13.0 up to 14.3.1 allowed an attacker to execute arbitrary javascript code.

Affected products

3
  • GitLab Inc./GitLabllm-fuzzy2 versions
    >=13.0, <=14.3.1+ 1 more
    • (no CPE)range: >=13.0, <=14.3.1
    • (no CPE)range: >=13.0, <14.1.7
  • osv-coords
    Range: >= 13.0.0, < 14.1.7

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.