CVE-2026-4527 | GitLab Community Edition/Enterprise Edition up to 18.9.6/18.10.5/18.11.2 cross-site request forgery

A vulnerability, which was classified as problematic, was found in GitLab Community Edition and Enterprise Edition up to 18.9.6/18.10.5/18.11.2. This impacts an unknown function. The manipulation results in cross-site request forgery.

This vulnerability is cataloged as CVE-2026-4527. The attack may be launched remotely. There is no exploit available.

You should upgrade the affected component.