Lucene search
K

4 matches found

CVE
CVE
added 2025/05/30 11:2 a.m.79 views

CVE-2025-1763

CVE-2025-1763 affects GitLab Enterprise Edition: cross-site scripting and content security policy bypass in a user’s browser due to improper neutralization of input during web page generation. Impacted ranges: 16.6 before 17.9.7, 17.10 before 17.10.5, and 17.11 before 17.11.1. Root cause describe...

8.7CVSS6.8AI score0.0054EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2025/05/30 11:2 a.m.7 views

CVE-2025-1763 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab

An issue has been discovered in GitLab EE that allows for cross-site-scripting attack and content security policy bypass in a user's browser under specific conditions, affecting all versions from 16.6 before 17.9.7, 17.10 before 17.10.5, and 17.11 before 17.11.1...

8.7CVSS6.7AI score0.0054EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/05/30 12:0 a.m.22 views

GitLab 16.6 < 17.9.7 / 17.10 < 17.10.5 / 17.11 < 17.11.1 (CVE-2025-1763)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab EE that allows for cross-site-scripting attack and content security policy bypass in a user's browser under specific conditions, affecting all versions from 16.6...

8.7CVSS8.6AI score0.0054EPSS
Exploits1References4
Circl
Circl
added 2025/04/24 8:0 p.m.11 views

CVE-2025-1763

creationtimestamp| type| source ---|---|--- 2025-04-24 20:00:47+00:00| seen| https://bsky.app/profile/getpokemon7.bsky.social/post/3lnliq7rlbk2f 2025-05-30 11:26:56+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lqf4s7jkgda2...

8.7CVSS8.7AI score0.0054EPSS
Exploits1References2
Rows per page
Query Builder