FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2026-04-12 19:04:43 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
099d4998-33cc-11f1-a7d1-2cf05da270f3	Gitlab -- vulnerabilities Gitlab reports: Exposed Method issue in websocket connections impacts GitLab CE/EE Denial of Service issue in Terraform state lock API impacts GitLab CE/EE Denial of Service issue in GraphQL API impacts GitLab CE/EE Denial of Service issue in CSV import impacts GitLab CE/EE Denial of Service issue in GraphQL SBOM API impacts GitLab EE Code Injection issue in Code Quality reports impacts GitLab EE Cross-site Scripting issue in analytics dashboards impacts GitLab EE Incorrect Authorization issue in vulnerability flags AI detection API impacts GitLab EE Information Disclosure issue in certain GraphQl query impacts GitLab EE Improper Access Control issue in Environments API impacts GitLab EE Information Disclosure issue in CSV export impacts GitLab CE/EE Missing Authorization issue in custom role permissions impacts GitLab CE/EE Discovery 2026-04-08 Entry 2026-04-09 gitlab-ce gitlab-ee >= 18.10.0 lt 18.10.3 >= 18.9.0 lt 18.9.5 >= 11.3.0 lt 18.8.9 CVE-2026-5173 CVE-2026-1092 CVE-2025-12664 CVE-2026-1403 CVE-2026-1101 CVE-2026-1516 CVE-2026-4332 CVE-2026-2619 CVE-2025-9484 CVE-2026-1752 CVE-2026-2104 CVE-2026-4916 https://about.gitlab.com/releases/2026/04/08/patch-release-gitlab-18-10-3-released/
b933083e-2b2e-11f1-b60a-2cf05da270f3	Gitlab -- vulnerabilities Gitlab reports: Improper Handling of Parameters issue in Jira Connect installations impacts GitLab CE/EE Cross-Site Request Forgery issue in GLQL API impacts GitLab CE/EE HTML Injection in vulnerability report impacts GitLab EE Denial of Service issue in GraphQL API impacts GitLab CE/EE Improper Access Control issue in WebAuthn 2FA impacts GitLab CE/EE Improper Access Control issue in GraphQL query impacts GitLab EE Denial of Service issue in CI configuration processing impacts GitLab CE/EE Denial of Service issue in webhook configuration impacts GitLab CE/EE Cross-site Scripting issue in Mermaid diagram renderer impacts GitLab CE/EE Improper Access Control issue in Merge Requests impacts GitLab CE/EE Access Control issue in GraphQL API impacts GitLab EE Incorrect Authorization issue in authorization caching impacts GitLab EE Discovery 2026-03-25 Entry 2026-03-29 gitlab-ce gitlab-ee >= 18.10.0 lt 18.10.1 >= 18.9.0 lt 18.9.3 >= 7.11.0 lt 18.8.7 CVE-2026-2370 CVE-2026-3857 CVE-2026-2995 CVE-2026-3988 CVE-2026-2745 CVE-2026-1724 CVE-2025-13436 CVE-2025-13078 CVE-2026-2973 CVE-2026-2726 CVE-2025-14595 CVE-2026-4363 https://about.gitlab.com/releases/2026/03/25/patch-release-gitlab-18-10-1-released/

VuXML ID

Description

099d4998-33cc-11f1-a7d1-2cf05da270f3

Gitlab -- vulnerabilities

Gitlab reports:

Exposed Method issue in websocket connections impacts GitLab CE/EE

Denial of Service issue in Terraform state lock API impacts GitLab CE/EE

Denial of Service issue in GraphQL API impacts GitLab CE/EE

Denial of Service issue in CSV import impacts GitLab CE/EE

Denial of Service issue in GraphQL SBOM API impacts GitLab EE

Code Injection issue in Code Quality reports impacts GitLab EE

Cross-site Scripting issue in analytics dashboards impacts GitLab EE

Incorrect Authorization issue in vulnerability flags AI detection API impacts GitLab EE

Information Disclosure issue in certain GraphQl query impacts GitLab EE

Improper Access Control issue in Environments API impacts GitLab EE

Information Disclosure issue in CSV export impacts GitLab CE/EE

Missing Authorization issue in custom role permissions impacts GitLab CE/EE

Discovery 2026-04-08
Entry 2026-04-09
gitlab-ce
gitlab-ee

>= 18.10.0 lt 18.10.3

>= 18.9.0 lt 18.9.5

>= 11.3.0 lt 18.8.9

CVE-2026-5173
CVE-2026-1092
CVE-2025-12664
CVE-2026-1403
CVE-2026-1101
CVE-2026-1516
CVE-2026-4332
CVE-2026-2619
CVE-2025-9484
CVE-2026-1752
CVE-2026-2104
CVE-2026-4916
https://about.gitlab.com/releases/2026/04/08/patch-release-gitlab-18-10-3-released/

b933083e-2b2e-11f1-b60a-2cf05da270f3

Gitlab -- vulnerabilities

Gitlab reports:

Improper Handling of Parameters issue in Jira Connect installations impacts GitLab CE/EE

Cross-Site Request Forgery issue in GLQL API impacts GitLab CE/EE

HTML Injection in vulnerability report impacts GitLab EE

Denial of Service issue in GraphQL API impacts GitLab CE/EE

Improper Access Control issue in WebAuthn 2FA impacts GitLab CE/EE

Improper Access Control issue in GraphQL query impacts GitLab EE

Denial of Service issue in CI configuration processing impacts GitLab CE/EE

Denial of Service issue in webhook configuration impacts GitLab CE/EE

Cross-site Scripting issue in Mermaid diagram renderer impacts GitLab CE/EE

Improper Access Control issue in Merge Requests impacts GitLab CE/EE

Access Control issue in GraphQL API impacts GitLab EE

Incorrect Authorization issue in authorization caching impacts GitLab EE

Discovery 2026-03-25
Entry 2026-03-29
gitlab-ce
gitlab-ee

>= 18.10.0 lt 18.10.1

>= 18.9.0 lt 18.9.3

>= 7.11.0 lt 18.8.7

CVE-2026-2370
CVE-2026-3857
CVE-2026-2995
CVE-2026-3988
CVE-2026-2745
CVE-2026-1724
CVE-2025-13436
CVE-2025-13078
CVE-2026-2973
CVE-2026-2726
CVE-2025-14595
CVE-2026-4363
https://about.gitlab.com/releases/2026/03/25/patch-release-gitlab-18-10-1-released/