cve/CVE-2023-0050.md at main

admin/cve

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-05 18:27:17 +00:00

marc 555e9c7de4 Update Sat May 25 21:48:12 CEST 2024

2024-05-25 21:48:12 +02:00

1.0 KiB

Raw Permalink Blame History

CVE-2023-0050

Description

An issue has been discovered in GitLab affecting all versions starting from 13.7 before 15.7.8, all versions starting from 15.8 before 15.8.4, all versions starting from 15.9 before 15.9.2. A specially crafted Kroki diagram could lead to a stored XSS on the client side which allows attackers to perform arbitrary actions on behalf of victims.

POC

Reference

No PoCs from references.

Github

https://github.com/ARPSyndicate/cvemon
https://github.com/Threekiii/CVE
https://github.com/nomi-sec/PoC-in-GitHub
https://github.com/wh-gov/CVE-2023-0050

1.0 KiB Raw Permalink Blame History

CVE-2023-0050

Description

POC

Reference

Github

1.0 KiB

Raw Permalink Blame History