CVE-2025-6171 | GitLab Community Edition/Enterprise Edition up to 18.3.5/18.4.3/18.5.1 Packages API Endpoint authorization (Patch 549730)

Inserito da Angelo Barbosa | Nov 15, 2025 | CVE

A vulnerability was found in GitLab Community Edition and Enterprise Edition up to 18.3.5/18.4.3/18.5.1. It has been classified as problematic. Affected by this issue is some unknown functionality of the component Packages API Endpoint. This manipulation causes missing authorization.

This vulnerability is registered as CVE-2025-6171. Remote exploitation of the attack is possible. No exploit is available.

Upgrading the affected component is recommended.

CVE-2025-6171 | GitLab Community Edition/Enterprise Edition up to 18.3.5/18.4.3/18.5.1 Packages API Endpoint authorization (Patch 549730)

Post correlati

CVE-2024-2765 | Ultimate Member Plugin up to 2.8.4 on WordPress cross site scripting

CVE-2013-10053 | ZPanel up to 10.0.0.2 Htpasswd Module system inHTUsername os command injection

CVE-2024-13013 | PHPGurukul Maid Hiring Management System 1.0 Contact Us Page /admin/contactus.php page title cross site scripting

CVE-2024-12898 | 1000 Projects Attendance Tracking Management System 1.0 faculty_action.php faculty_course_id sql injection