CVE-2024-4835 | GitLab up to 16.10.5/16.11.2/17.0.0 User Information cross site scripting

Inserito da Angelo Barbosa | Mag 23, 2024 | CVE

A vulnerability was found in GitLab up to 16.10.5/16.11.2/17.0.0. It has been classified as problematic. This affects an unknown part of the component User Information Handler. The manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2024-4835. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-4835 | GitLab up to 16.10.5/16.11.2/17.0.0 User Information cross site scripting

Post correlati

CVE-2024-24507 | Act-On 2023 login.jsp newUser cross site scripting

CVE-2024-1885 | LG Signage TV 6.0.0-56 webOS code injection

CVE-2024-21207 | Oracle MySQL Server up to 8.0.38/8.4.1/9.0.1 InnoDB denial of service

CVE-2024-7090 | LH Add Media From Url Plugin up to 1.23 on WordPress cross site scripting