{"uuid": "e33b3d9d-9bad-470b-a9fb-f88177b80aea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-4278", "type": "seen", "source": "https://t.me/brutsecurity/2014", "content": "CVE-2025-4278, -5121, 2254 and other: Multiple vulnerabilities in GitLab, 3.7 - 8.7 rating\u2757\ufe0f\n\nIn recent patch notes, GitLab reported ten vulnerabilities, including HTML injection, XSS, DoS, and more.\n\nSearch at Netlas.io:\n\ud83d\udc49 Link: https://nt.ls/dq6qU\n\ud83d\udc49 Dork: http.favicon.hash_sha256:72a2cad5025aa931d6ea56c3201d1f18e68a8cd39788c7c80d5b2b82aa5143ef OR http.headers.set_cookie:\"gitlab\" OR http.headers.location:\"gitlab\"\n\nVendor's advisory: https://about.gitlab.com/releases/2025/06/11/patch-release-gitlab-18-0-2-released/#cve-2025-5121---missing-authorization-issue-impacts-gitlab-ultimate-ee", "creation_timestamp": "2026-07-11T12:00:03.609996Z"}