Reflected Cross-Site Scripting (XSS) Vulnerability in GitLab Versions 13.11.6, 13.12.6, and 14.0.2

Reflected Cross-Site Scripting (XSS) Vulnerability in GitLab Versions 13.11.6, 13.12.6, and 14.0.2

CVE-2021-22227 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

A reflected cross-site script vulnerability in GitLab before versions 13.11.6, 13.12.6 and 14.0.2 allowed an attacker to send a malicious link to a victim and trigger actions on their behalf if they clicked it

Learn more about our Web Application Penetration Testing UK.