Gitlab · Gitlab Ce/Ee · CVE-2020-7971
**Name of the Vulnerable Software and Affected Versions**
GitLab EE versions 11.0 through 12.7.2
**Description**
The issue allows for cross-site scripting (XSS), which is a type of attack that can be used to steal user data or take control of user sessions.
**Recommendations**
For GitLab EE versions 11.0 through 12.7.2, update to a version later than 12.7.2 to resolve the issue.