VYPR
High severity7.3NVD Advisory· Published Oct 5, 2021· Updated Jun 17, 2026

CVE-2021-39887

CVE-2021-39887

Description

A stored Cross-Site Scripting vulnerability in the GitLab Flavored Markdown in GitLab CE/EE version 8.4 and above allowed an attacker to execute arbitrary JavaScript code on the victim's behalf.

Affected products

4

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.