CVE-2021-22225 log

Severity Medium
Remote Yes
Type Cross-site scripting
Insufficient input sanitization in markdown in GitLab version 13.11 and up before version 14.0.2 allows an attacker to exploit a stored cross-site scripting vulnerability via specially-crafted markdown.
Group Package Affected Fixed Severity Status Ticket
AVG-2125 gitlab 14.0.1-1 14.0.3-1 High Fixed
Date Advisory Group Package Severity Type
06 Jul 2021 ASA-202107-18 AVG-2125 gitlab High multiple issues