Changeset View
Changeset View
Standalone View
Standalone View
vuln.xml
Context not available. | |||||
* Do not forget port variants (linux-f10-libxml2, libxml2, etc.) | * Do not forget port variants (linux-f10-libxml2, libxml2, etc.) | ||||
--> | --> | ||||
<vuxml xmlns="http://www.vuxml.org/apps/vuxml-1"> | <vuxml xmlns="http://www.vuxml.org/apps/vuxml-1"> | ||||
<vuln vid="085a087b-3897-11e8-ac53-d8cb8abf62dd"> | |||||
<topic>Gitlab -- multiple vulnerabilities</topic> | |||||
<affects> | |||||
<package> | |||||
<name>gitlab</name> | |||||
<range><ge>10.6.0</ge><lt>10.6.3</lt></range> | |||||
<range><ge>10.5.0</ge><lt>10.5.7</lt></range> | |||||
<range><ge>8.6</ge><lt>10.4.7</lt></range> | |||||
</package> | |||||
</affects> | |||||
<description> | |||||
<body xmlns="http://www.w3.org/1999/xhtml"> | |||||
<p>GitLab reports:</p> | |||||
<blockquote cite="https://about.gitlab.com/2018/04/04/security-release-gitlab-10-dot-6-dot-3-released/"> | |||||
<p>Confidential issue comments in Slack, Mattermost, and webhook integrations.</p> | |||||
<p>Persistent XSS in milestones data-milestone-id.</p> | |||||
<p>Persistent XSS in filename of merge request.</p> | |||||
</blockquote> | |||||
</body> | |||||
</description> | |||||
<references> | |||||
<url>https://about.gitlab.com/2018/04/04/security-release-gitlab-10-dot-6-dot-3-released/</url> | |||||
</references> | |||||
<dates> | |||||
<discovery>2018-04-05</discovery> | |||||
<entry>2018-04-05</entry> | |||||
</dates> | |||||
</vuln> | |||||
<vuln vid="cdb4d962-34f9-11e8-92db-080027907385"> | <vuln vid="cdb4d962-34f9-11e8-92db-080027907385"> | ||||
<topic>moodle -- multiple vulnerabilities</topic> | <topic>moodle -- multiple vulnerabilities</topic> | ||||
<affects> | <affects> | ||||
Context not available. |