[Forgot Password]
Login  Register Subscribe

30481

 
 

423868

 
 

255116

 
 

909

 
 

198683

 
 

282

Paid content will be excluded from the download.


Download | Alert*
OVAL

Cross-Site Scripting vulnerability in GitLab CE/EE - CVE-2022-1948 (rpm)

ID: oval:org.secpod.oval:def:82145Date: (C)2022-07-15   (M)2023-08-03
Class: VULNERABILITYFamily: unix




The host is installed with GitLab CE/EE 15.0 before 15.0.1 and is prone to an cross-Site scripting vulnerability. A flaw is present in the application, which fails to validate the input used in quick actions. Successful exploitation allows attackers to exploit XSS.

Platform:
Linux
Product:
gitlab-ce
gitlab-ee
Reference:
CVE-2022-1948
CVE    1
CVE-2022-1948
CPE    2
cpe:/a:gitlab:gitlab:::~~community~~~
cpe:/a:gitlab:gitlab:::~~enterprise~~~

© SecPod Technologies