FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2026-03-29 11:53:11 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
0236eab0-1d62-11f1-88f8-2cf05da270f3	Gitlab -- vulnerabilities Gitlab reports: Cross-site Scripting issue in Markdown placeholder processing impacts GitLab CE/EE Denial of Service issue in GraphQL API impacts GitLab CE/EE Denial of Service issue in repository archive endpoint impacts GitLab CE/EE Denial of Service issue in protected branches API impacts GitLab CE/EE Denial of Service issue in webhook custom headers impacts GitLab CE/EE Denial of Service issue in webhook endpoint impacts GitLab CE/EE Improper Neutralization of CRLF Sequences issue impacts GitLab CE/EE Improper Access Control issue in runners API impacts GitLab CE/EE Improper Access Control issue in snippet rendering impacts GitLab CE/EE Information Disclosure issue in inaccessible issues impacts GitLab CE/EE Missing Authorization issue in Group Import impacts GitLab CE/EE Incorrect Reference issue in repository download impacts GitLab CE/EE Incorrect Authorization issue in Virtual Registry impacts GitLab EE Improper Escaping of Output issue in Datadog integration impacts GitLab CE/EE Discovery 2026-03-11 Entry 2026-03-11 gitlab-ce gitlab-ee >= 18.9.0 lt 18.9.2 >= 18.8.0 lt 18.8.6 >= 1.0.0 lt 18.7.6 CVE-2026-1090 CVE-2026-1069 CVE-2025-13929 CVE-2025-14513 CVE-2025-13690 CVE-2025-12576 CVE-2026-3848 CVE-2025-12555 CVE-2026-0602 CVE-2026-1732 CVE-2026-1663 CVE-2026-1230 CVE-2025-12704 CVE-2025-12697 https://about.gitlab.com/releases/2026/03/11/patch-release-gitlab-18-9-2-released/
b933083e-2b2e-11f1-b60a-2cf05da270f3	Gitlab -- vulnerabilities Gitlab reports: Improper Handling of Parameters issue in Jira Connect installations impacts GitLab CE/EE Cross-Site Request Forgery issue in GLQL API impacts GitLab CE/EE HTML Injection in vulnerability report impacts GitLab EE Denial of Service issue in GraphQL API impacts GitLab CE/EE Improper Access Control issue in WebAuthn 2FA impacts GitLab CE/EE Improper Access Control issue in GraphQL query impacts GitLab EE Denial of Service issue in CI configuration processing impacts GitLab CE/EE Denial of Service issue in webhook configuration impacts GitLab CE/EE Cross-site Scripting issue in Mermaid diagram renderer impacts GitLab CE/EE Improper Access Control issue in Merge Requests impacts GitLab CE/EE Access Control issue in GraphQL API impacts GitLab EE Incorrect Authorization issue in authorization caching impacts GitLab EE Discovery 2026-03-25 Entry 2026-03-29 gitlab-ce gitlab-ee >= 18.10.0 lt 18.10.1 >= 18.9.0 lt 18.9.3 >= 7.11.0 lt 18.8.7 CVE-2026-2370 CVE-2026-3857 CVE-2026-2995 CVE-2026-3988 CVE-2026-2745 CVE-2026-1724 CVE-2025-13436 CVE-2025-13078 CVE-2026-2973 CVE-2026-2726 CVE-2025-14595 CVE-2026-4363 https://about.gitlab.com/releases/2026/03/25/patch-release-gitlab-18-10-1-released/

VuXML ID

Description

0236eab0-1d62-11f1-88f8-2cf05da270f3

Gitlab -- vulnerabilities

Gitlab reports:

Cross-site Scripting issue in Markdown placeholder processing impacts GitLab CE/EE

Denial of Service issue in GraphQL API impacts GitLab CE/EE

Denial of Service issue in repository archive endpoint impacts GitLab CE/EE

Denial of Service issue in protected branches API impacts GitLab CE/EE

Denial of Service issue in webhook custom headers impacts GitLab CE/EE

Denial of Service issue in webhook endpoint impacts GitLab CE/EE

Improper Neutralization of CRLF Sequences issue impacts GitLab CE/EE

Improper Access Control issue in runners API impacts GitLab CE/EE

Improper Access Control issue in snippet rendering impacts GitLab CE/EE

Information Disclosure issue in inaccessible issues impacts GitLab CE/EE

Missing Authorization issue in Group Import impacts GitLab CE/EE

Incorrect Reference issue in repository download impacts GitLab CE/EE

Incorrect Authorization issue in Virtual Registry impacts GitLab EE

Improper Escaping of Output issue in Datadog integration impacts GitLab CE/EE

Discovery 2026-03-11
Entry 2026-03-11
gitlab-ce
gitlab-ee

>= 18.9.0 lt 18.9.2

>= 18.8.0 lt 18.8.6

>= 1.0.0 lt 18.7.6

CVE-2026-1090
CVE-2026-1069
CVE-2025-13929
CVE-2025-14513
CVE-2025-13690
CVE-2025-12576
CVE-2026-3848
CVE-2025-12555
CVE-2026-0602
CVE-2026-1732
CVE-2026-1663
CVE-2026-1230
CVE-2025-12704
CVE-2025-12697
https://about.gitlab.com/releases/2026/03/11/patch-release-gitlab-18-9-2-released/

b933083e-2b2e-11f1-b60a-2cf05da270f3

Gitlab -- vulnerabilities

Gitlab reports:

Improper Handling of Parameters issue in Jira Connect installations impacts GitLab CE/EE

Cross-Site Request Forgery issue in GLQL API impacts GitLab CE/EE

HTML Injection in vulnerability report impacts GitLab EE

Denial of Service issue in GraphQL API impacts GitLab CE/EE

Improper Access Control issue in WebAuthn 2FA impacts GitLab CE/EE

Improper Access Control issue in GraphQL query impacts GitLab EE

Denial of Service issue in CI configuration processing impacts GitLab CE/EE

Denial of Service issue in webhook configuration impacts GitLab CE/EE

Cross-site Scripting issue in Mermaid diagram renderer impacts GitLab CE/EE

Improper Access Control issue in Merge Requests impacts GitLab CE/EE

Access Control issue in GraphQL API impacts GitLab EE

Incorrect Authorization issue in authorization caching impacts GitLab EE

Discovery 2026-03-25
Entry 2026-03-29
gitlab-ce
gitlab-ee

>= 18.10.0 lt 18.10.1

>= 18.9.0 lt 18.9.3

>= 7.11.0 lt 18.8.7

CVE-2026-2370
CVE-2026-3857
CVE-2026-2995
CVE-2026-3988
CVE-2026-2745
CVE-2026-1724
CVE-2025-13436
CVE-2025-13078
CVE-2026-2973
CVE-2026-2726
CVE-2025-14595
CVE-2026-4363
https://about.gitlab.com/releases/2026/03/25/patch-release-gitlab-18-10-1-released/