A vulnerability was discovered in GitLab versions prior to 13.1. Username format restrictions could be bypassed allowing for html tags to be added.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Gitlab | Gitlab | * | 12.10.13 (excluding) |
Gitlab | Gitlab | 13.0.0 (including) | 13.0.8 (excluding) |
Gitlab | Gitlab | 13.1.0 (including) | 13.1.2 (excluding) |
Gitlab | Ubuntu | esm-apps/xenial | * |
Gitlab | Ubuntu | xenial | * |