CVE-2021-39906
Improper validation of ipynb files in GitLab CE/EE version 13.5 and above allows an attacker to execute arbitrary JavaScript code on the victim’s behalf.
Date published : 2021-11-04
https://gitlab.com/gitlab-org/cves/-/blob/master/2021/CVE-2021-39906.json