CVE-2024-4207 | GitLab up to 17.0.5/17.1.3/17.2.1 XML File cross site scripting

Inserito da Angelo Barbosa | Ago 8, 2024 | CVE

A vulnerability, which was classified as problematic, was found in GitLab up to 17.0.5/17.1.3/17.2.1. Affected is an unknown function of the component XML File Handler. The manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2024-4207. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-4207 | GitLab up to 17.0.5/17.1.3/17.2.1 XML File cross site scripting

Post correlati

CVE-2024-0662 | FancyBox Plugin 3.0.2/3.3.3 on WordPress cross site scripting

CVE-2024-2571 | SourceCodester Employee Task Management System 1.0 /manage-admin.php redirect

CVE-2023-46943 | evershop up to 1.0.0-rc.7 JSON Web Token hard-coded key

CVE-2024-41804 | xibosignage xibo-cms up to 3.3.11/4.0.13 sql injection (GHSA-4pp3-4mw7-qfwr)