CVE-2026-4922 | GitLab Community Edition/Enterprise Edition up to 18.9.5/18.10.3/18.11.0 GraphQL Mutation cross-site request forgery

A vulnerability has been found in GitLab Community Edition and Enterprise Edition up to 18.9.5/18.10.3/18.11.0 and classified as problematic. This issue affects some unknown processing of the component GraphQL Mutation Handler. The manipulation leads to cross-site request forgery.

This vulnerability is listed as CVE-2026-4922. The attack may be initiated remotely. There is no available exploit.

The affected component should be upgraded.VulDB Recent EntriesRead More