GitLab Flaw Allows Account Takeover via XSS Attacks
GitLab Flaw Allows Account Takeover via XSS Attacks
Summary:
GitLab has addressed a high-severity vulnerability identified as CVE-2024-4835, which allowed unauthenticated attackers to take over user accounts through cross-site scripting (XSS) attacks. This XSS vulnerability was found in the VS code editor (Web IDE) integrated within GitLab.
Threat Level – Red | Vulnerability Report
To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn.