CVE-2025-0811
27.03.2025, 13:15
An issue has been discovered in GitLab CE/EE affecting all versions from 17.7 before 17.8.6, 17.9 before 17.9.3, and 17.10 before 17.10.1. Improper rendering of certain file types leads to cross-site scripting.
| Vendor | Product | Version |
|---|---|---|
| gitlab | gitlab | 17.7.0 ≤ 𝑥 < 17.8.6 |
| gitlab | gitlab | 17.7.0 ≤ 𝑥 < 17.8.6 |
| gitlab | gitlab | 17.9.0 ≤ 𝑥 < 17.9.3 |
| gitlab | gitlab | 17.9.0 ≤ 𝑥 < 17.9.3 |
| gitlab | gitlab | 17.10.0 |
| gitlab | gitlab | 17.10.0 |
𝑥
= Vulnerable software versions
