CVE-2021-22220 - log back

CVE-2021-22220 edited at 09 Jun 2021 08:36:00
Description
- An issue has been discovered in GitLab affecting all versions starting with 13.10 before 13.12.2. GitLab was vulnerable to a stored cross-site scripting (XSS) attack in blob viewer of notebooks.
+ An issue has been discovered in GitLab affecting all versions starting with 13.10 before 13.12.2. GitLab was vulnerable to a stored cross-site scripting (XSS) attack in the blob viewer of notebooks.
CVE-2021-22220 edited at 08 Jun 2021 17:01:33
Description
- An issue has been discovered in GitLab affecting all versions starting with 13.10. GitLab was vulnerable to a stored cross-site scripting (XSS) attack in blob viewer of notebooks.
+ An issue has been discovered in GitLab affecting all versions starting with 13.10 before 13.12.2. GitLab was vulnerable to a stored cross-site scripting (XSS) attack in blob viewer of notebooks.
References
https://about.gitlab.com/releases/2021/06/01/security-release-gitlab-13-12-2-released/
https://gitlab.com/gitlab-org/gitlab/-/issues/294128
https://hackerone.com/reports/1060114
CVE-2021-22220 edited at 08 Jun 2021 16:55:45
Severity
- Unknown
+ Medium
Remote
- Unknown
+ Remote
Type
- Unknown
+ Cross-site scripting
Description
+ An issue has been discovered in GitLab affecting all versions starting with 13.10. GitLab was vulnerable to a stored cross-site scripting (XSS) attack in blob viewer of notebooks.
References
+ https://about.gitlab.com/releases/2021/06/01/security-release-gitlab-13-12-2-released/
+ https://gitlab.com/gitlab-org/gitlab/-/issues/294128
+ https://hackerone.com/reports/1060114
CVE-2021-22220 created at 08 Jun 2021 16:32:39
Severity
+ Unknown
Remote
+ Unknown
Type
+ Unknown
Description
References
Notes