CVE-2025-1763 | GitLab Enterprise Edition up to 17.9.6/17.10.4/17.11.0 Content Security Policy cross site scripting (Issue 521718)

Inserito da Angelo Barbosa | Mag 30, 2025 | CVE

A vulnerability, which was classified as problematic, was found in GitLab Enterprise Edition up to 17.9.6/17.10.4/17.11.0. This affects an unknown part of the component Content Security Policy Handler. The manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2025-1763. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-1763 | GitLab Enterprise Edition up to 17.9.6/17.10.4/17.11.0 Content Security Policy cross site scripting (Issue 521718)

Post correlati

CVE-2024-12839 | Changing Information Technology CGFIDO up to 1.2.0 Device Authentication Login authentication replay

CVE-2025-1231 | Devolutions Server up to 2024.3.10.0 PAM Module improper authentication (DEVO-2025-0002)

CVE-2023-39257 | Dell Rugged Control Center up to 4.6 Installation Repair access control (dsa-2023-340)

CVE-2024-7692 | Flaming Forms Plugin up to 1.0.1 on WordPress cross site scripting