CVE-2025-12734 | GitLab Community Edition/Enterprise Edition up to 18.4.5/18.5.3/18.6.1 Merge escape output (Issue 579573)

A vulnerability has been found in GitLab Community Edition and Enterprise Edition up to 18.4.5/18.5.3/18.6.1 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Merge Handler. This manipulation causes escaping of output.

This vulnerability appears as CVE-2025-12734. The attack may be initiated remotely. There is no available exploit.

The affected component should be upgraded.VulDB Recent EntriesRead More