CVE-2025-3111 – GitLab Kubernetes Denial of Service Vulnerability

May 22, 2025

CVE ID : CVE-2025-3111

Published : May 22, 2025, 2:16 p.m. | 2 hours, 31 minutes ago

Description : An issue has been discovered in GitLab CE/EE affecting all versions from 10.2 before 17.10.7, 17.11 before 17.11.3, and 18.0 before 18.0.1. A lack of input validation in the Kubernetes integration could allow an authenticated user to cause denial of service..

Severity: 6.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-4575 – OpenSSL -addreject Option Truncation Vulnerability

Next Article Best Free and Open Source Alternatives to Mule ESB

Highlights

CVE-2025-5940 – Osom Blocks – WordPress Stored Cross-Site Scripting

June 27, 2025

CVE ID : CVE-2025-5940

Published : June 27, 2025, 8:15 a.m. | 2 hours, 54 minutes ago

Description : The Osom Blocks – Custom Post Type listing block plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘class_name’ parameter in all versions up to, and including, 1.2.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.

Severity: 6.4 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Microsoft adds Copilot-powered debugging features for .NET in Visual Studio

Blackstone portfolio company R Systems Acquires Novigo Solutions, Strengthening its Product Engineering and Full-Stack Agentic-AI Capabilities

HoundDog.ai Launches Industry’s First Privacy-by-Design Code Scanner for AI Applications

The Double-Edged Sustainability Sword Of AI In Web Design

How VPNs are helping people evade increased censorship – and much more

Google’s AI Mode can now find restaurant reservations for you – how it works

Best early Labor Day TV deals 2025: Save up to 50% on Samsung, LG, and more

Claude wins high praise from a Supreme Court justice – is AI’s legal losing streak over?

Preserving Data Integrity with Laravel Soft Deletes for Recovery and Compliance

Preserving Data Integrity with Laravel Soft Deletes for Recovery and Compliance

Quickly Generate Forms based on your Eloquent Models with Laravel Formello

Pest 4 is Released

FOSS Weekly #25.34: Mint 22.2 Features, FreeVPN Fiasco, Windows Update Killing SSDs, AI in LibreOffice and More

FOSS Weekly #25.34: Mint 22.2 Features, FreeVPN Fiasco, Windows Update Killing SSDs, AI in LibreOffice and More

You’ll need standalone Word, PowerPoint, Excel on iOS, as Microsoft 365 app becomes a Copilot wrapper

Microsoft to Move Copilot Previews to iOS While Editing Returns to Office Apps

CVE-2025-3111 – GitLab Kubernetes Denial of Service Vulnerability

Apple Patches CVE-2025-43300 Zero-Day in iOS, iPadOS, and macOS Exploited in Targeted Attacks

Scattered Spider Hacker Gets 10 Years, $13M Restitution for SIM Swapping Crypto Theft

Mafia: The Old Country, Witch It, and More Xbox Games Launching This Week

CVE-2025-6101 – Letta-AI Letta Unvalidated Input Injection Vulnerability

After ads, Microsoft Copilot on Android is testing “MSN feed” to make some money

CVE-2025-37821 – Linux Kernel Sched Eevdf Crash

CVE-2025-5940 – Osom Blocks – WordPress Stored Cross-Site Scripting

Fix: Didn’t Receive Email from Starlink?

Benchmarking the ASRock Industrial NUC BOX-255H

6 Steps to 24/7 In-House SOC Success

CVE-2025-3111 – GitLab Kubernetes Denial of Service Vulnerability

Related Posts