FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Gitlab -- Vulnerabilities

Affected packages
19.1.0 <= gitlab-ce < 19.1.2
19.0.0 <= gitlab-ce < 19.0.4
9.1.0 <= gitlab-ce < 18.11.7
19.1.0 <= gitlab-ee < 19.1.2
19.0.0 <= gitlab-ee < 19.0.4
9.1.0 <= gitlab-ee < 18.11.7

Details

VuXML ID 84ce0c0c-7b4e-11f1-9c40-2cf05da270f3
Discovery 2026-07-08
Entry 2026-07-09

Gitlab reports:

Cross-site Scripting issue in vulnerability evidence table renderer impacts GitLab EE

HTML Injection in wiki markup rendering impacts GitLab CE/EE

Insufficiently Protected Credentials issue in repository mirroring impacts GitLab EE

Improper Access Control issue in work items impacts GitLab EE

Missing Authorization issue in commit discussion display impacts GitLab CE/EE

Ambiguity Reference issue in a tag or branch impacts GitLab CE/EE

Incorrect Authorization issue in group-level settings impacts GitLab EE

Incorrect Authorization issue in compliance violation management impacts GitLab EE

References

CVE Name CVE-2025-12506
CVE Name CVE-2026-11827
CVE Name CVE-2026-13151
CVE Name CVE-2026-13320
CVE Name CVE-2026-6352
CVE Name CVE-2026-6896
CVE Name CVE-2026-7492
CVE Name CVE-2026-8472
URL https://docs.gitlab.com/releases/patches/patch-release-gitlab-19-1-2-released/