4 matches found
CVE-2025-1763
CVE-2025-1763 affects GitLab Enterprise Edition: cross-site scripting and content security policy bypass in a user’s browser due to improper neutralization of input during web page generation. Impacted ranges: 16.6 before 17.9.7, 17.10 before 17.10.5, and 17.11 before 17.11.1. Root cause describe...
CVE-2025-1763 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab
An issue has been discovered in GitLab EE that allows for cross-site-scripting attack and content security policy bypass in a user's browser under specific conditions, affecting all versions from 16.6 before 17.9.7, 17.10 before 17.10.5, and 17.11 before 17.11.1...
GitLab 16.6 < 17.9.7 / 17.10 < 17.10.5 / 17.11 < 17.11.1 (CVE-2025-1763)
The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab EE that allows for cross-site-scripting attack and content security policy bypass in a user's browser under specific conditions, affecting all versions from 16.6...
CVE-2025-1763
creationtimestamp| type| source ---|---|--- 2025-04-24 20:00:47+00:00| seen| https://bsky.app/profile/getpokemon7.bsky.social/post/3lnliq7rlbk2f 2025-05-30 11:26:56+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lqf4s7jkgda2...