Security News

Cybersecurity news aggregator

🔓
HIGH Vulnerabilities HKCERT

GitLab Multiple Vulnerabilities

cve-2026-1234software-vulnerabilitymitre-ta0001mitre-t1190
Multiple vulnerabilities in GitLab, including security restriction bypass, cross-site scripting, and denial of service, can be exploited by a remote attacker. Affected versions are GitLab CE and EE prior to 18.10.3, 18.9.5, and 18.8.9. The solution is to apply the vendor's fixes by upgrading to one of these patched versions.
Read Full Article →

Multiple vulnerabilities were identified in GitLab. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, sensitive information disclosure, cross-site scripting, data manipulation and security restriction bypass on the targeted system. Impact Denial of Service Security Restriction Bypass Cross-Site Scripting Data Manipulation Information Disclosure System / Technologies affected GitLab Community Edition (CE) versions prior to 18.10.3, 18.9.5, 18.8.9 GitLab Enterprise Edition (EE) versions prior to 18.10.3, 18.9.5, 18.8.9 Solutions Before installation of the software, please visit the vendor web-site for more details. Apply fixes issued by the vendor: https://about.gitlab.com/releases/2026/04/08/patch-release-gitlab-18-10-3-released/

Related Articles

MEDIUM [NEU] [mittel] Microsoft Azure (ACI Confidential Containers): Mehrere Schwachstellen BSI Germany CRITICAL [NEU] [hoch] Gogs: Mehrere Schwachstellen BSI Germany HIGH Security Alert: Alert Regarding Vulnerabilities in Adobe Acrobat and Reader (APSB26-26) JPCERT/CC HIGH [NEU] [mittel] Flowise: Schwachstelle ermöglicht Manipulation von Dateien BSI Germany
Read Full Article → ← Back to News

Share this article

Twitter Facebook LinkedIn