CVE-2025-4439 – GitLab Cross-Site Scripting (XSS)

CVE ID : CVE-2025-4439

Published : July 23, 2025, 6:15 p.m. | 45 minutes ago

Description : An issue has been discovered in GitLab CE/EE affecting all versions from 15.10 before 18.0.5, 18.1 before 18.1.3, and 18.2 before 18.2.1 that could have allowed an authenticated user to perform cross-site scripting attacks when the instance is served through certain content delivery networks.

Severity: 7.7 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…