CVE-2026-5262 | GitLab Community Edition/Enterprise Edition up to 18.9.5/18.10.3/18.11.0 Access Token cross site scripting

A vulnerability was found in GitLab Community Edition and Enterprise Edition up to 18.9.5/18.10.3/18.11.0. It has been declared as problematic. This issue affects some unknown processing of the component Access Token Handler. The manipulation results in cross site scripting.

This vulnerability is reported as CVE-2026-5262. The attack can be launched remotely. No exploit exists.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More