- Description
- An XSS vulnerability exists in GitLab CE/EE affecting all versions from 13.3 prior to 17.6.5, 17.7 prior to 17.7.4 and 17.8 prior to 17.8.2 that allows an attacker to execute unauthorized actions via a change page.
- Source
- cve@gitlab.com
- NVD status
- Awaiting Analysis
CVSS 3.1
- Type
- Secondary
- Base score
- 8.7
- Impact score
- 5.8
- Exploitability score
- 2.3
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N
- Severity
- HIGH
- cve@gitlab.com
- CWE-79
- Hype score
- Not currently trending
GitLab has released a critical update addressing nine vulnerabilities, including a high-severity XSS flaw (CVE-2025-0376). Affected versions include 17.8.2, 17.7.4, and 17.6.5. ⚠️ #GitLab #XSS #USA link: https://t.co/wgK5ZjCgVh https://t.co/QRlPX0OJzf
@TweetThreatNews
13 Feb 2025
53 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨🚨GitLab Patches High-Severity XSS Flaw (CVE-2025-0376) and Other Security Flaws in Latest Release ZoomEye Dork👉app="Gitlab" 579.6k+ results are found on ZoomEye. ZoomEye Link: https://t.co/yxsH4WODl9 Refer: https://t.co/d0Hx9GTBr1 #Cyberspacemapping #cybersecurity… https:
@zoomeye_team
13 Feb 2025
162 Impressions
0 Retweets
2 Likes
0 Bookmarks
0 Replies
0 Quotes