GHSA-74j9-xhqr-6qv3: Reflected Cross Site Scripting (XSS) in error message
If a website has been set to the “dev” environment mode, a URL can be provided which includes an XSS payload which will be executed in the resulting error message.
References
Detect and mitigate GHSA-74j9-xhqr-6qv3 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →