7 matches found
CVE-2025-0376
creationtimestamp| type| source ---|---|--- 2025-02-12 15:16:30+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhyhqkpeuj2z 2025-02-12 16:48:37+00:00| seen| https://mastodon.social/users/CyberSignaler/statuses/113991936688930663 2025-02-12 18:33:43+00:00| seen|...
CVE-2025-0376 vulnerabilities
Vulnerabilities for packages: gitlab-rails-ee-fips, gitlab-pages, gitlab-ee-fips, gitlab-pages-fips, gitlab-runner-fips, gitlab-cng, gitlab-rails-ee, gitlab-cng-fips, gitlab-ee...
CVE-2025-0376 vulnerabilities
Vulnerabilities for packages: gitlab-pages, gitlab-cng...
CVE-2025-0376 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab
An XSS vulnerability exists in GitLab CE/EE affecting all versions from 13.3 prior to 17.6.5, 17.7 prior to 17.7.4 and 17.8 prior to 17.8.2 that allows an attacker to execute unauthorized actions via a change page...
CVE-2025-0376
CVE-2025-0376 is a cross-site scripting (XSS) vulnerability in GitLab CE/EE. Affected versions are GitLab 13.3 up to 17.6.5, 17.7 up to 17.7.4, and 17.8 up to 17.8.2, where an attacker can modify a page to execute unauthorized actions. Public sources consistently describe the issue as an XSS on a...
CVE-2025-0376 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab
An XSS vulnerability exists in GitLab CE/EE affecting all versions from 13.3 prior to 17.6.5, 17.7 prior to 17.7.4 and 17.8 prior to 17.8.2 that allows an attacker to execute unauthorized actions via a change page...
GitLab 13.3 < 17.6.5 / 17.7 < 17.7.4 / 17.8 < 17.8.2 (CVE-2025-0376)
The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An XSS vulnerability exists in GitLab CE/EE affecting all versions from 13.3 prior to 17.6.5, 17.7 prior to 17.7.4 and 17.8 prior to 17.8.2 that allows an attacker to execute unauthorized actions via ...