Published
Last updated
gitlab-runner
16.5.0-r0
6.1
CVSS V3
Improper rendering of text nodes in golang.org/x/net/html
Text nodes not in the HTML namespace are incorrectly literally rendered, causing text which should be escaped to not be. This could lead to an XSS attack.