CVE-2026-7481 | GitLab Enterprise Edition up to 18.9.6/18.10.5/18.11.2 cross site scripting

Inserito da Angelo Barbosa | Mag 14, 2026 | CVE

A vulnerability classified as problematic has been found in GitLab Enterprise Edition up to 18.9.6/18.10.5/18.11.2. The affected element is an unknown function. Performing a manipulation results in cross site scripting.

This vulnerability is identified as CVE-2026-7481. The attack can be initiated remotely. There is not any exploit available.

It is recommended to upgrade the affected component.

CVE-2026-7481 | GitLab Enterprise Edition up to 18.9.6/18.10.5/18.11.2 cross site scripting

Post correlati

CVE-2025-14183 | SGAI Space1 NAS N1211DS up to 1.0.915 gsaiagent /cgi-bin/JSONAPI GET_FACTORY_INFO/GET_USER_INFO credentials storage

CVE-2024-50625 | Digi ConnectPort LTS up to 1.4.11 HTTP POST Request unrestricted upload

CVE-2024-6283 | DethemeKit for Elementor Plugin up to 2.1.5 on WordPress De Gallery Widget cross site scripting

CVE-2024-42357 | Shopware up to 6.5.8.12/6.6.5.0 API sql injection (GHSA-p6w9-r443-r752)