exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 5

CVE-2025-6186

6 месяцев назад

An issue has been discovered in GitLab CE/EE affecting all versions from 18.1 before 18.1.4, and 18.2 before 18.2.2 that could have allowed authenticated users to achieve account takeover by injecting malicious HTML into work item names.

CVSS3: 8.7

EPSS: Низкий

CVE-2025-6186

6 месяцев назад

An issue has been discovered in GitLab CE/EE affecting all versions from 18.1 before 18.1.4, and 18.2 before 18.2.2 that could have allowed authenticated users to achieve account takeover by injecting malicious HTML into work item names.

CVSS3: 8.7

EPSS: Низкий

CVE-2025-6186

6 месяцев назад

An issue has been discovered in GitLab CE/EE affecting all versions fr ...

CVSS3: 8.7

EPSS: Низкий

GHSA-h6qj-3xrq-vxh8

6 месяцев назад

An issue has been discovered in GitLab CE/EE affecting all versions from 18.1 before 18.1.4, and 18.2 before 18.2.2 that could have allowed authenticated users to achieve account takeover by injecting malicious HTML into work item names.

CVSS3: 8.7

EPSS: Низкий

BDU:2025-10981

8 месяцев назад

Уязвимость программной платформы на базе git для совместной работы над кодом GitLab EE/CE, связанная с недостаточной защитой структуры веб-страницы, позволяющая нарушителю проводить межсайтовые сценарные атаки (XSS)

CVSS3: 8.7

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2025-6186 An issue has been discovered in GitLab CE/EE affecting all versions from 18.1 before 18.1.4, and 18.2 before 18.2.2 that could have allowed authenticated users to achieve account takeover by injecting malicious HTML into work item names.	CVSS3: 8.7	0% Низкий	6 месяцев назад
CVE-2025-6186 An issue has been discovered in GitLab CE/EE affecting all versions from 18.1 before 18.1.4, and 18.2 before 18.2.2 that could have allowed authenticated users to achieve account takeover by injecting malicious HTML into work item names.	CVSS3: 8.7	0% Низкий	6 месяцев назад
CVE-2025-6186 An issue has been discovered in GitLab CE/EE affecting all versions fr ...	CVSS3: 8.7	0% Низкий	6 месяцев назад
GHSA-h6qj-3xrq-vxh8 An issue has been discovered in GitLab CE/EE affecting all versions from 18.1 before 18.1.4, and 18.2 before 18.2.2 that could have allowed authenticated users to achieve account takeover by injecting malicious HTML into work item names.	CVSS3: 8.7	0% Низкий	6 месяцев назад
BDU:2025-10981 Уязвимость программной платформы на базе git для совместной работы над кодом GitLab EE/CE, связанная с недостаточной защитой структуры веб-страницы, позволяющая нарушителю проводить межсайтовые сценарные атаки (XSS)	CVSS3: 8.7	0% Низкий	8 месяцев назад

Уязвимостей на страницу