VDB

CVE-2025-0811

CVE-2025-0811 PUBLISHED

An issue has been discovered in GitLab CE/EE affecting all versions from 17.7 before 17.8.6, 17.9 before 17.9.3, and 17.10 before 17.10.1. Improper rendering of certain file types leads to cross-site scripting.

EPSS 0.10% · 28.1th percentile

Risk Scores

EPSS Score
0.10%
28.1th percentile

Affected Products

VendorProductVersions
Bitnamigitlab17.7.0
Bitnamigitlab17.7.0

Timeline

  • Jan 21, 1970 Security Advisory
  • Mar 26, 2025 CVE Published
  • Mar 27, 2025 Coalition ESS Score
  • Mar 27, 2025 PoC Published
  • Mar 28, 2025 EPSS Score
  • Mar 28, 2025 Coalition ESS Score
  • Apr 4, 2025 PoC Published
  • Apr 10, 2025 EPSS Score
  • Apr 23, 2025 EPSS Score
  • May 6, 2025 EPSS Score
  • May 19, 2025 EPSS Score
  • Jun 1, 2025 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›