CVE-2026-4527 | GitLab Community Edition/Enterprise Edition up to 18.9.6/18.10.5/18.11.2 cross-site request forgery

Inserito da Angelo Barbosa | Mag 14, 2026 | CVE

A vulnerability, which was classified as problematic, was found in GitLab Community Edition and Enterprise Edition up to 18.9.6/18.10.5/18.11.2. This impacts an unknown function. The manipulation results in cross-site request forgery.

This vulnerability is cataloged as CVE-2026-4527. The attack may be launched remotely. There is no exploit available.

You should upgrade the affected component.

CVE-2026-4527 | GitLab Community Edition/Enterprise Edition up to 18.9.6/18.10.5/18.11.2 cross-site request forgery

Post correlati

CVE-2025-66277 | QNAP Systems QTS/QuTS hero link following (qsa-26-05)

CVE-2024-56705 | Linux Kernel up to 6.12.1 atomisp ia_css_3a_statistics_allocate allocation of resources

CVE-2024-26465 | stewdio beep.js URL /beep/Beep.Instrument.js cross site scripting

CVE-2024-1852 | WP-Members Membership Plugin up to 3.4.9.2 on WordPress cross site scripting