An issue was discovered in GitLab Community and Enterprise Edition before 11.1.7, 11.2.x before 11.2.4, and 11.3.x before 11.3.1. blog-viewer has stored XSS during repository browsing, if package.json exists. .
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2023-04-15T00:00:00

Updated: 2024-08-05T10:47:04.987Z

Reserved: 2018-09-26T00:00:00

Link: CVE-2018-17537

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2023-04-16T00:15:07.103

Modified: 2023-04-25T19:07:12.827

Link: CVE-2018-17537

cve-icon Redhat

No data.