CVE-2024-4835 | GitLab up to 16.10.5/16.11.2/17.0.0 User Information cross site scripting

Inserito da Angelo Barbosa | Mag 23, 2024 | CVE

A vulnerability was found in GitLab up to 16.10.5/16.11.2/17.0.0. It has been classified as problematic. This affects an unknown part of the component User Information Handler. The manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2024-4835. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-4835 | GitLab up to 16.10.5/16.11.2/17.0.0 User Information cross site scripting

Post correlati

CVE-2024-1791 | CodeMirror Blocks Plugin up to 1.2.4 on WordPress cross site scripting

CVE-2024-8449 | PLANET Technology GS-4210-24P2S Hardware 3.0 Serial Console hard-coded credentials

CVE-2023-42951 | Apple iOS/iPadOS up to 17.0 Browsing History denial of service

CVE-2024-35361 | MTab Bookmark up to 1.9.5 /LinkStore/getIcon sql injection (Issue 37)