Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2022-4007: 2022/CVE-2022-4007.json · master · GitLab.org / cves · GitLab

A issue has been discovered in GitLab CE/EE affecting all versions from 15.3 prior to 15.7.8, version 15.8 prior to 15.8.4, and version 15.9 prior to 15.9.2 A cross-site scripting vulnerability was found in the title field of work items that allowed attackers to perform arbitrary actions on behalf of victims at client side.

CVE
Open in Source
#xss#vulnerability#js#git#auth

Skip to content

GitLab

Next

    • GitLab: the DevOps platform
    • Explore GitLab
    • Install GitLab
    • How GitLab compares
    • Get started
    • GitLab docs
    • GitLab Learn

  • Pricing

  • Talk to an expert

  • /

  • Help

    • Help

    • Support

    • Community forum

    • Submit feedback

    • Contribute to GitLab

    Projects Groups Snippets

  • Register

  • Sign in

  • GitLab.org

  • cves

  • Repository

  • cves

  • 2022

  • CVE-2022-4007.json

Find file BlameHistoryPermalink

  • Publishing 0 updated advisories and 1 new advisories · 74b7615b

    🤖 GitLab Bot 🤖 authored Mar 04, 2023

    74b7615b

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE