Page 2 of 11 results (0.002 seconds)
CVSS: 8.7EPSS: 0%CPEs: 3EXPL: 1
CVSS: 8.7EPSS: 0%CPEs: 3EXPL: 1CVE-2025-0314 – Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab
https://notcve.org/view.php?id=CVE-2025-0314
24 Jan 2025 — An issue has been discovered in GitLab CE/EE affecting all versions from 17.2 before 17.6.4, 17.7 before 17.7.3, and 17.8 before 17.8.1. Improper rendering of certain file types lead to cross-site scripting. • https://gitlab.com/gitlab-org/gitlab/-/issues/512118 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •