| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-2045 | Incorrect Authorization in GitLab | GitLab | GitLab | Medium | 4.3 | 2025-03-06 13:04:17 | Deep Dive |
| CVE-2025-1540 | Incorrect Authorization in GitLab | GitLab | GitLab | Low | 3.1 | 2025-03-06 08:31:08 | Deep Dive |
| CVE-2025-0555 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab | GitLab | GitLab | High | 7.7 | 2025-03-03 16:02:28 | Deep Dive |
| CVE-2024-10925 | Authorization Bypass Through User-Controlled Key in GitLab | GitLab | GitLab | Medium | 5.3 | 2025-03-03 11:02:24 | Deep Dive |
| CVE-2025-0475 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab | GitLab | GitLab | High | 8.7 | 2025-03-03 10:30:48 | Deep Dive |
| CVE-2024-8186 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab | GitLab | GitLab | Medium | 5.4 | 2025-03-03 10:02:45 | Deep Dive |
| CVE-2024-3303 | Improper Neutralization of Input Used for LLM Prompting in GitLab | GitLab | GitLab | Medium | 6.4 | 2025-02-13 08:31:11 | Deep Dive |
| CVE-2025-1198 | Insufficient Session Expiration in GitLab | GitLab | GitLab | Medium | 4.2 | 2025-02-13 00:55:50 | Deep Dive |
| CVE-2024-7102 | Execution with Unnecessary Privileges in GitLab | GitLab | GitLab | Critical | 9.6 | 2025-02-13 00:54:26 | Deep Dive |
| CVE-2024-8266 | Execution with Unnecessary Privileges in GitLab | GitLab | GitLab | Medium | 4.4 | 2025-02-13 00:54:16 | Deep Dive |
| CVE-2024-9870 | Unintended Proxy or Intermediary ('Confused Deputy') in GitLab | GitLab | GitLab | Medium | 4.3 | 2025-02-12 15:31:03 | Deep Dive |
| CVE-2025-0516 | Incorrect Authorization in GitLab | GitLab | GitLab | Medium | 4.3 | 2025-02-12 15:30:48 | Deep Dive |
| CVE-2024-12379 | Allocation of Resources Without Limits or Throttling in GitLab | GitLab | GitLab | Medium | 6.5 | 2025-02-12 15:02:32 | Deep Dive |
| CVE-2025-0376 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab | GitLab | GitLab | High | 8.7 | 2025-02-12 15:02:22 | Deep Dive |
| CVE-2025-1212 | Exposure of Sensitive System Information to an Unauthorized Control Sphere in GitLab | GitLab | GitLab | Medium | 4.3 | 2025-02-12 15:02:07 | Deep Dive |
| CVE-2025-1042 | Files or Directories Accessible to External Parties in GitLab | GitLab | GitLab | Medium | 4.9 | 2025-02-12 15:02:02 | Deep Dive |
| CVE-2024-10383 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab VSCode Fork | GitLab | GitLab VSCode Fork | High | 8.7 | 2025-02-07 14:12:42 | Deep Dive |
| CVE-2025-1072 | Allocation of Resources Without Limits or Throttling in GitLab | GitLab | GitLab | Medium | 6.5 | 2025-02-07 04:05:20 | Deep Dive |
| CVE-2024-2878 | Allocation of Resources Without Limits or Throttling in GitLab | GitLab | GitLab | High | 7.5 | 2025-02-05 12:21:11 | Deep Dive |
| CVE-2024-3976 | Missing Authorization in GitLab | GitLab | GitLab | Medium | 6.5 | 2025-02-05 12:02:28 | Deep Dive |