An issue exists in GitLab Community Edition and Enterprise Edition prior to 10.7.6, 10.8.x prior to 10.8.5, and 11.x prior to 11.0.1. The charts feature contained a persistent XSS issue due to a lack of output encoding.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
gitlab gitlab |