CVE-2025-7000 | GitLab Community Edition/Enterprise Edition up to 18.3.5/18.4.3/18.5.1 Merge Request insertion of sensitive information into sent data (Patch 553129)

A vulnerability has been found in GitLab Community Edition and Enterprise Edition up to 18.3.5/18.4.3/18.5.1 and classified as problematic. Affected is an unknown function of the component Merge Request Handler. The manipulation leads to insertion of sensitive information into sent data.

This vulnerability is listed as CVE-2025-7000. The attack may be initiated remotely. There is no available exploit.

The affected component should be upgraded.VulDB Recent EntriesRead More