GitLab CE/EE XSS Vulnerability

CVE-2024-8180

Currently unrated 🤨

Key Information

Vendor: GitLab
Vendor: CVE Published:; 14 November 2024

Summary

An issue has been discovered in GitLab CE/EE affecting all versions from 17.3 before 17.3.7, 17.4 before 17.4.4, and 17.5 before 17.5.2. Improper output encoding could lead to XSS if CSP is not enabled.

Timeline

Vulnerability published.
Nov 14, 2024

Collectors

NVD Database