CVE-2026-2995 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

GitLab has remediated an issue in GitLab EE affecting all versions from 15.4 before 18.8.7, 18.9 before 18.9.3, and 18.10 before 18.10.1 that could have allowed…
High CVSS: 7.7

CVE-2026-2995

GitLab has remediated an issue in GitLab EE affecting all versions from 15.4 before 18.8.7, 18.9 before 18.9.3, and 18.10 before 18.10.1 that could have allowed an authenticated user to add email addresses to targeted user accounts due to improper sanitization of HTML content.
Vendor
Gitlab
Product
Gitlab
CWE
CWE-80
Yayın Tarihi
2026-03-25 17:16:58
Güncelleme
2026-03-26 17:42:57
Source Identifier
cve@gitlab.com
KEV Date Added
-

Kategoriler

CWE-80 Gitlab HIGH Gitlab 2026

Referanslar

https://about.gitlab.com/releases/2026/03/25/patch-release-gitlab-18-10-1-released/ https://gitlab.com/gitlab-org/gitlab/-/work_items/591065 https://hackerone.com/reports/3564600