CVE-2021-22220

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2021-22220

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-22220.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2021-22220

Aliases

BIT-gitlab-2021-22220

Published

2021-06-08T20:15:08.400Z

Modified

2026-04-10T04:29:59.770906Z

Severity

5.4 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N CVSS Calculator

Summary

[none]

Details

An issue has been discovered in GitLab affecting all versions starting with 13.10. GitLab was vulnerable to a stored XSS in blob viewer of notebooks.

References

Affected packages

Git / gitlab.com/gitlab-org/gitlab

Affected ranges

Type

GIT

Repo

https://gitlab.com/gitlab-org/gitlab

Events

Introduced

0d2d9558dba50b1496bf368954318d465825e8e3

Last affected

7327f6c9bf4fa71bc518992f995cc7648c102c07

Introduced

47f41a4a74f364c731aafd34a93bddb630f62230

Last affected

d6e2cf8d41eceec30c20b921d9779bbd539ae594

Introduced

12a3ec8fb4a540576b2d47247bc86ea7e2c7565b

Last affected

865a93b831bfcc63d49d6f2d14ccfafe216e4a99

Database specific

{
    "versions": [
        {
            "introduced": "13.10"
        },
        {
            "last_affected": "13.10.5"
        },
        {
            "introduced": "13.11"
        },
        {
            "last_affected": "13.11.5"
        },
        {
            "introduced": "13.12"
        },
        {
            "last_affected": "13.12.2"
        }
    ]
}

Affected versions

v13.*

v13.10.0-ee

v13.10.2-ee

v13.10.5-ee

v13.11.0-ee

v13.11.1-ee

v13.11.3-ee

v13.11.4-ee

v13.11.5-ee

v13.12.0-ee

v13.12.1-ee

v13.12.2-ee

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-22220.json"