CVE•Published 2026-01-09•Modified 2026-06-30•1 article on news•6 live references•NVD data
CVE-2025-9222Gitlab · Gitlab
Vulnerability data via NVD (ingested)
CVSS v3.1
8.7
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N
EPSS percentile
—
Weaknesses (CWE)
Description
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.2.2 before 18.5.5, 18.6 before 18.6.3, and 18.7 before 18.7.1 that could have allowed an authenticated user to achieve stored cross-site scripting by exploiting GitLab Flavored Markdown.
Timeline
Published 2026-01-09
Modified 2026-06-30
External references
Search for exposed instances
Shodan + Censys queries derived from NVD's CPE data. The vuln tag catches assets Shodan has explicitly linked to this CVE; the product / banner fingerprints find exposed instances even when the vuln tag was never applied (which is common).
Shodan · vuln tag0 hosts
vuln:CVE-2025-9222Hosts Shodan has explicitly fingerprinted as vulnerable.
Shodan · product
product:"Gitlab Gitlab"All exposed Gitlab Gitlab instances — cross-reference with the CVE's affected-version range.
Shodan · banner/body mention
http.html:"Gitlab"HTTP body or banner mentions "Gitlab" — catches deploys Shodan didn't identify as a product.
More intel sources (5)
Shodan report
vuln:CVE-2025-9222Country / ASN / product breakdown for the vuln query.
Censys
vulnerabilities.cve_id: CVE-2025-9222Censys host search filtered to this CVE id.
grep.app
CVE-2025-9222Public source-code mentions — fast PoC discovery.
GitHub code
CVE-2025-9222GitHub code search for direct mentions.
Google dork
"CVE-2025-9222" exploit -site:nvd.nist.govWrite-ups and news, NVD excluded.
Known PoCs on GitHub (8)
CVE-2025-92228 repos
iakat/starsunknown
iakat/stars - An awesome list of my starred repositories
mrhenrike/FirewallXPL-ForgePython
Perimeter security exploitation framework — 164 modules covering FW, NGFW, UTM, WAF, VPN, NAC, LB, and OT/ICS firewalls (Fortinet, Cisco, Palo Alto, F5, Citrix, Check Point, SonicW…
ironclawdevs27/ArgusJavaScript
AI-powered QA harness for Claude Code — automated bug detection via Chrome Dev-Tools Protocol, no test scripts required.
Svigo-o/PoCGenPython
EdgarParra565/player-performance-forecasterPython
Probabilistic NBA player-props modeling project focused on points forecasts, EV estimation, and backtesting.
Good-karma-lab/black-orchid-agentPython
mp3wizard/notebooklm-mcp-cliPython
NotebookLM MCP CLI - Access NotebookLM via Claude with security fixes and FastMCP 1.0 compatibility
ecucondorSA/AutamedicaTypeScript