CVE-2025-12029 | GitLab Community Edition/Enterprise Edition up to 18.4.5/18.5.3/18.6.1 Swagger UI cross site scripting

A vulnerability, which was classified as problematic, was found in GitLab Community Edition and Enterprise Edition up to 18.4.5/18.5.3/18.6.1. Affected is an unknown function of the component Swagger UI. The manipulation results in cross site scripting.

This vulnerability is reported as CVE-2025-12029. The attack can be launched remotely. No exploit exists.

You should upgrade the affected component.VulDB Recent EntriesRead More