CVE-2025-6948 | GitLab Community Edition/Enterprise Edition up to 17.11.5/18.0.3/18.1.1 cross site scripting (Issue 552616)

Inserito da Angelo Barbosa | Lug 10, 2025 | CVE

A vulnerability has been found in GitLab Community Edition and Enterprise Edition up to 17.11.5/18.0.3/18.1.1 and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross site scripting.

This vulnerability is known as CVE-2025-6948. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-6948 | GitLab Community Edition/Enterprise Edition up to 17.11.5/18.0.3/18.1.1 cross site scripting (Issue 552616)

Post correlati

CVE-2024-40598 | CheckUser Extension up to 1.42.1 on MediaWiki API log_deleted information disclosure

CVE-2024-42010 | RoundCube up to 1.5.7/1.6.7 Cascading Style Sheet mod_css_styles information disclosure

CVE-2024-0941 | Novel-Plus 4.3.0-RC1 /novel/bookComment/list sort sql injection

CVE-2024-28125 | unclebob FitNesse os command injection