vulnerability
FreeBSD: VID-B950A83B-789E-11E8-8545-D8CB8ABF62DD (CVE-2018-12605): Gitlab -- multiple vulnerabilities
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:N/AC:M/Au:S/C:N/I:P/A:N) | Jun 25, 2018 | Jun 27, 2018 | May 7, 2019 |
Severity
4
CVSS
(AV:N/AC:M/Au:S/C:N/I:P/A:N)
Published
Jun 25, 2018
Added
Jun 27, 2018
Modified
May 7, 2019
Description
An issue was discovered in GitLab Community Edition and Enterprise Edition 10.7.x before 10.7.6. The usage of 'url_for' contained a XSS issue due to it allowing arbitrary protocols as a parameter.
Solution
freebsd-upgrade-package-gitlab
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.