Page 72 of 575 results (0.004 seconds)

CVSS: 5.4EPSS: 0%CPEs: 6EXPL: 1

An issue has been discovered in GitLab affecting versions prior to 12.10.13, 13.0.8, 13.1.2. A stored cross-site scripting vulnerability was discovered when editing references. Se ha detectado un problema en GitLab que afecta a versiones anteriores a 12.10.13, 13.0.8, 13.1.2. Se detectó una vulnerabilidad de tipo cross-site scripting almacenado cuando se editan referencias • https://gitlab.com/gitlab-org/cves/-/blob/master/2020/CVE-2020-13338.json https://gitlab.com/gitlab-org/gitlab/-/issues/213273 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 7.2EPSS: 0%CPEs: 2EXPL: 0

An issue has been discovered in GitLab affecting versions from 12.10 to 12.10.12 that allowed for a stored XSS payload to be added as a group name. Se ha detectado un problema en GitLab que afecta a las versiones de 12.10 hasta 12.10.12, que permitía que una carga útil de tipo XSS almacenado sea agregada como un nombre de grupo • https://gitlab.com/gitlab-org/cves/-/blob/master/2020/CVE-2020-13337.json https://gitlab.com/gitlab-org/gitlab/-/issues/199049 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 4.8EPSS: 0%CPEs: 2EXPL: 1

An issue has been discovered in GitLab affecting versions from 11.8 before 12.10.13. GitLab was vulnerable to a stored XSS by in the error tracking feature. Se ha detectado un problema en GitLab que afecta a las versiones 11.8 anteriores a 12.10.13. GitLab era susceptible a una vulnerabilidad de tipo XSS almacenado en la funcionalidad error tracking • https://gitlab.com/gitlab-org/cves/-/blob/master/2020/CVE-2020-13336.json https://gitlab.com/gitlab-org/gitlab/-/issues/215970 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 4.3EPSS: 0%CPEs: 3EXPL: 0

A vulnerability was discovered in GitLab versions prior to 13.1. Under certain conditions the restriction for Github project import could be bypassed. Se detectó una vulnerabilidad en GitLab versiones anteriores a 13.1. Bajo determinadas condiciones, la restricción para la importación de proyectos de Github podrían ser omitidas • https://gitlab.com/gitlab-org/cves/-/blob/master/2020/CVE-2020-13326.json https://gitlab.com/gitlab-org/gitlab/-/issues/27221 •

CVSS: 8.3EPSS: 0%CPEs: 3EXPL: 1

A vulnerability was discovered in GitLab versions prior to 13.1. Username format restrictions could be bypassed allowing for html tags to be added. Se detectó una vulnerabilidad en GitLab versiones anteriores a 13.1. Unas restricciones de formato de nombre de usuario pueden omitidas, permitiendo agregar etiquetas html • https://gitlab.com/gitlab-org/cves/-/blob/master/2020/CVE-2020-13321.json https://gitlab.com/gitlab-org/gitlab/-/issues/25751 •