CVE-2025-6186: 
GitLab vulnerability analysis and mitigation

CVE-2025-6186 is a high-severity cross-site scripting vulnerability discovered in GitLab CE/EE affecting all versions from 18.1 before 18.1.4, and 18.2 before 18.2.2. The vulnerability allows authenticated users to achieve account takeover by injecting malicious HTML into work item names (GitLab Release, NVD).

The vulnerability has been assigned a CVSS v3.1 base score of 8.7 (High) with the vector string CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N. The vulnerability is classified as CWE-79 (Improper Neutralization of Input During Web Page Generation). It specifically involves the ability to inject malicious HTML content into work item names, which can lead to stored cross-site scripting attacks (GitLab Release).

The vulnerability enables authenticated users to execute account takeover attacks by exploiting the cross-site scripting flaw. This could potentially allow attackers to perform actions on behalf of other users and gain unauthorized access to their accounts (GBHackers, GitLab Release).

GitLab has released patches to address this vulnerability in versions 18.1.4 and 18.2.2. GitLab.com is already running the patched version. Self-managed GitLab installations should be upgraded immediately to one of these patched versions. GitLab Dedicated customers do not need to take any action as their instances are automatically updated (GitLab Release).