Lucene search
K

7 matches found

Circl
Circl
added 2025/02/12 3:16 p.m.17 views

CVE-2025-0376

creationtimestamp| type| source ---|---|--- 2025-02-12 15:16:30+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhyhqkpeuj2z 2025-02-12 16:48:37+00:00| seen| https://mastodon.social/users/CyberSignaler/statuses/113991936688930663 2025-02-12 18:33:43+00:00| seen|...

8.7CVSS7AI score0.00379EPSS
Exploits0References7
Chainguard
Chainguard
added 2025/02/12 3:15 p.m.20 views

CVE-2025-0376 vulnerabilities

Vulnerabilities for packages: gitlab-rails-ee-fips, gitlab-pages, gitlab-ee-fips, gitlab-pages-fips, gitlab-runner-fips, gitlab-cng, gitlab-rails-ee, gitlab-cng-fips, gitlab-ee...

8.7CVSS5.8AI score0.00379EPSS
Exploits0
Wolfi
Wolfi
added 2025/02/12 3:15 p.m.24 views

CVE-2025-0376 vulnerabilities

Vulnerabilities for packages: gitlab-pages, gitlab-cng...

8.7CVSS5.8AI score0.00379EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2025/02/12 3:2 p.m.12 views

CVE-2025-0376 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab

An XSS vulnerability exists in GitLab CE/EE affecting all versions from 13.3 prior to 17.6.5, 17.7 prior to 17.7.4 and 17.8 prior to 17.8.2 that allows an attacker to execute unauthorized actions via a change page...

8.7CVSS8.1AI score0.00379EPSS
Exploits0References2
CVE
CVE
added 2025/02/12 3:2 p.m.326 views

CVE-2025-0376

CVE-2025-0376 is a cross-site scripting (XSS) vulnerability in GitLab CE/EE. Affected versions are GitLab 13.3 up to 17.6.5, 17.7 up to 17.7.4, and 17.8 up to 17.8.2, where an attacker can modify a page to execute unauthorized actions. Public sources consistently describe the issue as an XSS on a...

8.7CVSS8.1AI score0.00379EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2025/02/12 3:2 p.m.21 views

CVE-2025-0376 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab

An XSS vulnerability exists in GitLab CE/EE affecting all versions from 13.3 prior to 17.6.5, 17.7 prior to 17.7.4 and 17.8 prior to 17.8.2 that allows an attacker to execute unauthorized actions via a change page...

8.7CVSS0.00379EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/02/12 12:0 a.m.13 views

GitLab 13.3 < 17.6.5 / 17.7 < 17.7.4 / 17.8 < 17.8.2 (CVE-2025-0376)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An XSS vulnerability exists in GitLab CE/EE affecting all versions from 13.3 prior to 17.6.5, 17.7 prior to 17.7.4 and 17.8 prior to 17.8.2 that allows an attacker to execute unauthorized actions via ...

8.7CVSS5.6AI score0.00379EPSS
Exploits0References4
Rows per page
Query Builder