Security Advisory
CVE-2021-22242
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
Insufficient input sanitization in Mermaid markdown in GitLab CE/EE version 11.4 and up allows an attacker to exploit a stored cross-site scripting vulnerability via a specially-crafted markdown