GitLab Flaw Allows Account Takeover via XSS Attacks

Threat Advisories

GitLab Flaw Allows Account Takeover via XSS Attacks

May 27, 2024

Summary:

GitLab has addressed a high-severity vulnerability identified as CVE-2024-4835, which allowed unauthenticated attackers to take over user accounts through cross-site scripting (XSS) attacks. This XSS vulnerability was found in the VS code editor (Web IDE) integrated within GitLab.
 

Threat Level – Red | Vulnerability Report

×

To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn.

 

Recent Posts

Join Our Newsletter 14,000+ subscribers and growing! Get top cybersecurity news delivered directly to your inbox.
Sign Up to Receive Our Weekly Threat Digest