Security Advisory

CVE-2023-2015

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-06-07 00:00:00

Last updated 2025-01-07 16:48:03

Assigner GitLab

State PUBLISHED

Description

An issue has been discovered in GitLab CE/EE affecting all versions starting from 15.8 before 15.10.8, all versions starting from 15.11 before 15.11.7, all versions starting from 16.0 before 16.0.2. A reflected XSS was possible when creating new abuse reports which allows attackers to perform arbitrary actions on behalf of victims.

← Browse all CVEs View on cve.org ↗