CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

21284 matches found

EUVD•added 2026/05/14 5:38 a.m.•7 views

EUVD-2025-209832

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.11 before 18.9.7, 18.10 before 18.10.6, and 18.11 before 18.11.3 that could have allowed an authenticated user to inject HTML and JavaScript into email notifications sent to other users due to improper input sanitizatio...

5.4CVSS5.8AI score0.0003EPSS

Exploits0References3

CVE•added 2026/05/14 5:38 a.m.•187 views

CVE-2025-12669

GitLab CVE-2025-12669 affects GitLab CE/EE versions 15.11 up to before 18.9.7, 18.10 up to before 18.10.6, and 18.11 up to before 18.11.3. The issue arises from improper input sanitization, allowing an authenticated user to inject HTML and JavaScript into email notifications sent to other users. ...

5.4CVSS5.8AI score0.0003EPSS

Exploits0References3Affected Software1

Vulnrichment•added 2026/05/14 5:38 a.m.•6 views

CVE-2025-12669 Improper Control of Generation of Code ('Code Injection') in GitLab

5.4CVSS5.8AI score0.0003EPSS

Exploits0References3

ATTACKERKB•added 2026/05/14 5:38 a.m.•7 views

CVE-2025-12669

5.4CVSS5.8AI score0.0003EPSS

Exploits0References4Affected Software1

Debian CVE•added 2026/05/14 5:38 a.m.•9 views

CVE-2025-12669

Removed by vendor...

5.4CVSS5.8AI score0.0003EPSS

Exploits0

Cvelist•added 2026/05/14 5:38 a.m.•32 views

CVE-2025-13874 Authorization Bypass Through User-Controlled Key in GitLab

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.1 before 18.9.7, 18.10 before 18.10.6, and 18.11 before 18.11.3 that could have allowed an authenticated user with Guest permissions to view issues in projects they were not authorized to access...

4.3CVSS0.00011EPSS

Exploits0References3

EUVD•added 2026/05/14 5:38 a.m.•6 views

EUVD-2025-209834

4.3CVSS5.8AI score0.00011EPSS

Exploits0References3

Debian CVE•added 2026/05/14 5:38 a.m.•8 views

CVE-2025-13874

Removed by vendor...

4.3CVSS5.8AI score0.00011EPSS

Exploits0

Vulnrichment•added 2026/05/14 5:38 a.m.•6 views

CVE-2025-13874 Authorization Bypass Through User-Controlled Key in GitLab

4.3CVSS5.8AI score0.00011EPSS

Exploits0References3

CVE•added 2026/05/14 5:38 a.m.•64 views

CVE-2025-13874

CVE-2025-13874 affects GitLab CE/EE campaigns: all versions from 15.1 prior to 18.9.7, 18.10 prior to 18.10.6, and 18.11 prior to 18.11.3 could allow an authenticated user with Guest permissions to view issues in projects they were not authorized to access. The issue is described as an Authorizat...

4.3CVSS5.8AI score0.00011EPSS

Exploits0References3Affected Software1

ATTACKERKB•added 2026/05/14 5:38 a.m.•7 views

CVE-2025-13874

4.3CVSS5.8AI score0.00011EPSS

Exploits0References4Affected Software1

Cvelist•added 2026/05/14 5:38 a.m.•31 views

CVE-2025-14869 Improper Validation of Specified Quantity in Input in GitLab

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.5 before 18.9.7, 18.10 before 18.10.6, and 18.11 before 18.11.3 that could have allowed an unauthenticated user to cause denial of service by sending specially crafted payloads on certain API endpoints...

7.5CVSS0.00035EPSS

Exploits0References3

CVE•added 2026/05/14 5:38 a.m.•14 views

CVE-2025-14869

GitLab CVE-2025-14869 affects GitLab CE/EE versions 18.5–before 18.9.7, 18.10–before 18.10.6, and 18.11–before 18.11.3. It could allow an unauthenticated attacker to cause a denial of service by sending specially crafted payloads to certain API endpoints. CVSSv3.1 base score 7.5 (HIGH), with NETW...

7.5CVSS5.8AI score0.00035EPSS

Exploits0References3Affected Software1

Debian CVE•added 2026/05/14 5:38 a.m.•4 views

CVE-2025-14869

Removed by vendor...

7.5CVSS5.8AI score0.00035EPSS

Exploits0

ATTACKERKB•added 2026/05/14 5:38 a.m.•3 views

CVE-2025-14869

7.5CVSS5.8AI score0.00035EPSS

Exploits0References4Affected Software1

EUVD•added 2026/05/14 5:38 a.m.•5 views