Security Advisory
CVE-2021-39887
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
A stored Cross-Site Scripting vulnerability in the GitLab Flavored Markdown in GitLab CE/EE version 8.4 and above allowed an attacker to execute arbitrary JavaScript code on the victims behalf.