Security Advisory

CVE-2024-3092

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-04-12 00:53:11

Last updated 2025-11-20 04:12:24

Assigner GitLab

State PUBLISHED

Description

An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.9 before 16.9.4, all versions starting from 16.10 before 16.10.2. A payload may lead to a Stored XSS while using the diff viewer, allowing attackers to perform arbitrary actions on behalf of victims.

← Browse all CVEs View on cve.org ↗