GitLab 9.5.9 through 12.9 is vulnerable to stored XSS in an admin notification feature.
2020-04-29T17:15:11.990
2024-11-21T04:59:25.773
Modified
CVSSv3.1: 4.8 (MEDIUM)
AV:N/AC:M/Au:S/C:N/I:P/A:N
6.8
2.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | gitlab | gitlab | < 12.7.8 | Yes |
| Application | gitlab | gitlab | < 12.7.8 | Yes |
| Application | gitlab | gitlab | < 12.8.8 | Yes |
| Application | gitlab | gitlab | < 12.8.8 | Yes |
| Application | gitlab | gitlab | < 12.9.1 | Yes |
| Application | gitlab | gitlab | < 12.9.1 | Yes |