Cross-site scripting (XSS) vulnerability in GitLab 6.0 and other versions prior to 6.5.0 allows remote malicious users to inject arbitrary web script or HTML via a crafted HTML file, as demonstrated by README.html.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
gitlab gitlab 6.0.0 |