FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Gitlab -- Multiple vulnerabilities

Affected packages
11.7.0	<=	gitlab-ce	<	11.7.4
11.6.0	<=	gitlab-ce	<	11.6.9

Details

VuXML ID	43ee6c1d-29ee-11e9-82a1-001b217b3468
Discovery	2019-02-05
Entry	2019-02-06

Gitlab reports:

Leak of Confidential Issue and Merge Request Titles

Persistent XSS in User Status

[source]

References

CVE Name	CVE-2019-6796
CVE Name	CVE-2019-7353
URL	https://about.gitlab.com/2019/02/05/critical-security-release-gitlab-11-dot-7-dot-4-released/

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.