Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

GitLab — Vulnerabilities & Security Advisories 956

All 956 CVE vulnerabilities found in GitLab, with AI-generated Chinese analysis, references, and POCs.

Vendor: GitLab

CVE IDTitleCVSSSeverityPublished
CVE-2025-2254 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab CWE-79 8.7 High2025-06-12
CVE-2025-4278 Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) in GitLab CWE-80 8.7 High2025-06-12
CVE-2025-5996 Allocation of Resources Without Limits or Throttling in GitLab CWE-770 6.5 Medium2025-06-12
CVE-2025-1763 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab CWE-79 8.7 High2025-05-30
CVE-2024-7803 Allocation of Resources Without Limits or Throttling in GitLab CWE-770 6.5 Medium2025-05-23
CVE-2024-9163 User Interface (UI) Misrepresentation of Critical Information in GitLab CWE-451 3.5 Low2025-05-23
CVE-2024-12093 Improper Validation of Consistency within Input in GitLab CWE-1288 6.8 Medium2025-05-22
CVE-2025-0605 Weak Authentication in GitLab CWE-1390 4.6 Medium2025-05-22
CVE-2025-0679 Exposure of Private Personal Information to an Unauthorized Actor in GitLab CWE-359 4.3 Medium2025-05-22
CVE-2025-0993 Allocation of Resources Without Limits or Throttling in GitLab CWE-770 7.5 High2025-05-22
CVE-2025-1110 Insufficient Granularity of Access Control in GitLab CWE-1220 2.7 Low2025-05-22
CVE-2025-2853 Allocation of Resources Without Limits or Throttling in GitLab CWE-770 6.5 Medium2025-05-22
CVE-2025-3111 Allocation of Resources Without Limits or Throttling in GitLab CWE-770 6.5 Medium2025-05-22
CVE-2025-4979 Insufficient Granularity of Access Control in GitLab CWE-1220 4.9 Medium2025-05-22
CVE-2024-8973 Allocation of Resources Without Limits or Throttling in GitLab CWE-770 6.5 Medium2025-05-09
CVE-2025-0549 Authentication Bypass Using an Alternate Path or Channel in GitLab CWE-288 6.8 Medium2025-05-09
CVE-2025-1278 Insufficient Granularity of Access Control in GitLab CWE-1220 5.3 Medium2025-05-09
CVE-2024-12244 Missing Authorization in GitLab CWE-862 4.3 Medium2025-04-24
CVE-2025-0639 Allocation of Resources Without Limits or Throttling in GitLab CWE-770 6.5 Medium2025-04-24
CVE-2025-1908 Business Logic Errors in GitLab CWE-840 7.7 High2025-04-24
CVE-2025-0362 Improper Restriction of Rendered UI Layers or Frames in GitLab CWE-1021 6.4 Medium2025-04-10
CVE-2025-2469 Debug Messages Revealing Unnecessary Information in GitLab CWE-1295 3.7 Low2025-04-10
CVE-2024-11129 Generation of Error Message Containing Sensitive Information in GitLab CWE-209 6.3 Medium2025-04-10
CVE-2025-1677 Allocation of Resources Without Limits or Throttling in GitLab CWE-770 6.5 Medium2025-04-10
CVE-2025-2408 Insufficient Granularity of Access Control in GitLab CWE-1220 5.3 Medium2025-04-10
CVE-2024-10307 Allocation of Resources Without Limits or Throttling in GitLab CWE-770 4.3 Medium2025-03-28
CVE-2024-12619 Insufficient Granularity of Access Control in GitLab CWE-1220 5.2 Medium2025-03-28
CVE-2025-2867 Improper Control of Generation of Code ('Code Injection') in GitLab CWE-94 4.4 Medium2025-03-27
CVE-2024-9773 Improper Neutralization of Special Elements used in a Command ('Command Injection') in GitLab CWE-77 3.7 Low2025-03-27
CVE-2025-0811 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab CWE-79 8.7 High2025-03-27

All 956 known CVE vulnerabilities affecting GitLab with full Chinese analysis, references, and POCs where available.