Reflected XSS in optimistic comment posting
Closely related to https://gitlab.com/gitlab-org/gitlab-ce/issues/36979
- Set your name to
Appel<script>alert("XSS via name in profile")</script>
- Post a comment
Edited by Robert Speicher
Closely related to https://gitlab.com/gitlab-org/gitlab-ce/issues/36979
Appel<script>alert("XSS via name in profile")</script>