CVE-2024-7047
Severity:
HIGH
Type:
CWE-79
Cross-Site Scripting (XSS)
Publication date:
25/07/2024
Last modified:
25/07/2024
Description
A cross site scripting vulnerability exists in GitLab CE/EE affecting all versions from 16.6 prior to 17.0.5, 17.1 prior to 17.1.3, 17.2 prior to 17.2.1 allowing an attacker to execute arbitrary scripts under the context of the current logged in user.
Impact
Base Score 3.x
7.70
Severity 3.x
HIGH