Gitlab Community Edition version 9.1 is vulnerable to lack of input validation in the IPython notebooks component resulting in persistent cross site scripting.
2018-03-21T20:29:00.620
2024-11-21T03:03:54.380
Modified
CVSSv3.0: 6.1 (MEDIUM)
AV:N/AC:M/Au:N/C:N/I:P/A:N
8.6
2.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | gitlab | gitlab | 9.5.10 | Yes |
| Application | gitlab | gitlab | 9.5.10 | Yes |
| Application | gitlab | gitlab | 10.1.5 | Yes |
| Application | gitlab | gitlab | 10.1.5 | Yes |
| Application | gitlab | gitlab | 10.2.5 | Yes |
| Application | gitlab | gitlab | 10.2.5 | Yes |
| Application | gitlab | gitlab | 10.3.3 | Yes |
| Application | gitlab | gitlab | 10.3.3 | Yes |