CVE-2017-7665: Cross-site Scripting

June 12, 2017 (updated June 19, 2017)

There are certain user input components in the UI which had been guarding for some forms of XSS issues but were insufficient.

References

www.securityfocus.com/bid/99009
nvd.nist.gov/vuln/detail/CVE-2017-7665

Detect and mitigate CVE-2017-7665 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →