CVE-2021-22242

Publication date

2021-08-25 18:38:24

Family

GitLab

State

PUBLISHED

Description

Insufficient input sanitization in Mermaid markdown in GitLab CE/EE version 11.4 and up allows an attacker to exploit a stored cross-site scripting vulnerability via a specially-crafted markdown