CVE-2021-22232 - log back

CVE-2021-22232 created at 06 Jul 2021 17:46:40
Severity
+ Low
Remote
+ Remote
Type
+ Content spoofing
Description
+ HTML injection was possible via the full name field before version 14.0.2 in GitLab CE.
References
+ https://gitlab.com/gitlab-org/gitlab/-/issues/300713
+ https://hackerone.com/reports/1090634
+ https://gitlab.com/gitlab-org/cves/-/blob/master/2021/CVE-2021-22232.json
Notes