PT-2020-13486 · Gitlab · Gitlab

Published

2020-10-06

·

Updated

2024-03-06

·

CVE-2020-13345

CVSS v3.1

5.5

Medium

VectorAV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L
Name of the Vulnerable Software and Affected Versions GitLab versions 10.8 and later
Description An issue has been discovered in GitLab, specifically a reflected XSS on multiple routes.
Recommendations For GitLab versions 10.8 and later, update to a version that includes a fix for this issue.

Exploit

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

BIT-GITLAB-2020-13345
CVE-2020-13345

Affected Products

Gitlab