CVE-2025-9222 | GitLab Community Edition/Enterprise Edition up to 18.5.4/18.6.2/18.7.0 Flavored Markdown cross site scripting (Issue 562561)

A vulnerability was found in GitLab Community Edition and Enterprise Edition up to 18.5.4/18.6.2/18.7.0. It has been declared as problematic. Affected is an unknown function of the component Flavored Markdown. Such manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2025-9222. The attack can be launched remotely. No exploit exists.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More