CVE-2024-8312 | GitLab Community Edition/Enterprise Edition up to 17.3.5/17.4.2/17.5.0 Diff View cross site scripting

Posted by Angelo Barbosa | Oct 24, 2024 | CVE

A vulnerability was found in GitLab Community Edition and Enterprise Edition up to 17.3.5/17.4.2/17.5.0. It has been classified as problematic. This affects an unknown part of the component Diff View. The manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2024-8312. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-8312 | GitLab Community Edition/Enterprise Edition up to 17.3.5/17.4.2/17.5.0 Diff View cross site scripting

Related Posts

CVE-2023-49761 | Gravity Master Product Enquiry for WooCommerce Plugin up to 3.0 on WordPress cross-site request forgery

CVE-2024-27130 | QNAP QTS/QuTS hero buffer overflow (qsa-24-23)

CVE-2023-43016 | IBM Security Access Manager Container up to 10.0.6.1 empty password in configuration file (XFDB-266154)

CVE-2024-37246 | Jethin Gallery Slideshow Plugin up to 1.4.1 on WordPress cross site scripting