Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

GitLab — Vulnerabilities & Security Advisories 1012

Browse all 1012 CVE security advisories affecting GitLab. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by GitLab:GitLabGitLab CE/EEGitLab Community and Enterprise EditionsGitLab EEGitLab Runnergitlab-vscode-extensionDASTGitLab Community Edition and GitLab Enterprise EditionGitalyGitLab PagesDAST API scannerGitLab DAST API scannerGitLab VSCode ForkGitLab Language ServerGitLab AI Gateway
CVE IDTitleCVSSSeverityPublished
CVE-2025-4097 Allocation of Resources Without Limits or Throttling in GitLab — GitLabCWE-770 6.5 Medium2025-12-11
CVE-2025-8405 Improper Encoding or Escaping of Output in GitLab — GitLabCWE-116 7.7 High2025-12-11
CVE-2025-11247 Authorization Bypass Through User-Controlled Key in GitLab — GitLabCWE-639 4.3 Medium2025-12-11
CVE-2025-11984 Authentication Bypass Using an Alternate Path or Channel in GitLab — GitLabCWE-288 6.8 Medium2025-12-11
CVE-2025-12562 Allocation of Resources Without Limits or Throttling in GitLab — GitLabCWE-770 7.5 High2025-12-11
CVE-2025-12716 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab — GitLabCWE-79 8.7 High2025-12-11
CVE-2025-13978 Generation of Error Message Containing Sensitive Information in GitLab — GitLabCWE-209 4.3 Medium2025-12-11
CVE-2025-14157 Allocation of Resources Without Limits or Throttling in GitLab — GitLabCWE-770 6.5 Medium2025-12-11
CVE-2024-9183 Time-of-check Time-of-use (TOCTOU) Race Condition in GitLab — GitLabCWE-367 7.7 High2025-12-05
CVE-2025-6195 Direct Request ('Forced Browsing') in GitLab — GitLabCWE-425 4.3 Medium2025-11-26
CVE-2025-7449 Allocation of Resources Without Limits or Throttling in GitLab — GitLabCWE-770 6.5 Medium2025-11-26
CVE-2025-12571 Allocation of Resources Without Limits or Throttling in GitLab — GitLabCWE-770 7.5 High2025-11-26
CVE-2025-12653 Authentication Bypass by Spoofing in GitLab — GitLabCWE-290 6.5 Medium2025-11-26
CVE-2025-13611 Insertion of Sensitive Information into Log File in GitLab — GitLabCWE-532 2.0 Low2025-11-26
CVE-2025-9825 Missing Authorization in GitLab — GitLabCWE-862 5.0 Medium2025-11-21
CVE-2025-12983 Memory Allocation with Excessive Size Value in GitLab — GitLabCWE-789 3.5 Low2025-11-15
CVE-2025-2615 Insertion of Sensitive Information Into Sent Data in GitLab — GitLabCWE-201 4.3 Medium2025-11-15
CVE-2025-6945 Improper Neutralization of Special Elements used in a Command ('Command Injection') in GitLab — GitLabCWE-77 3.5 Low2025-11-15
CVE-2025-6171 Missing Authorization in GitLab — GitLabCWE-862 5.3 Medium2025-11-15
CVE-2025-7000 Insertion of Sensitive Information Into Sent Data in GitLab — GitLabCWE-201 4.3 Medium2025-11-15
CVE-2025-7736 Incorrect Authorization in GitLab — GitLabCWE-863 3.1 Low2025-11-15
CVE-2025-11865 Incorrect Authorization in GitLab — GitLabCWE-863 4.3 Medium2025-11-15
CVE-2025-11990 Improper Handling of URL Encoding (Hex Encoding) in GitLab — GitLabCWE-177 3.1 Low2025-11-15
CVE-2025-11702 Missing Authorization in GitLab — GitLabCWE-862 8.5 High2025-10-29
CVE-2025-6601 Business Logic Errors in GitLab — GitLabCWE-840 2.7 Low2025-10-27
CVE-2025-10497 Allocation of Resources Without Limits or Throttling in GitLab — GitLabCWE-770 7.5 High2025-10-27
CVE-2025-11971 Incorrect Authorization in GitLab — GitLabCWE-863 6.5 Medium2025-10-27
CVE-2025-11974 Allocation of Resources Without Limits or Throttling in GitLab — GitLabCWE-770 6.5 Medium2025-10-27
CVE-2025-11447 Allocation of Resources Without Limits or Throttling in GitLab — GitLabCWE-770 7.5 High2025-10-27
CVE-2025-11989 Missing Authorization in GitLab — GitLabCWE-862 3.7 Low2025-10-26

This page lists every published CVE security advisory associated with GitLab. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.