GITLAB released critical security patches on June 24, 2026, addressing 13 vulnerabilities in both the Community and Enterprise Editions. Administrators must update to versions 19.1.1, 19.0.3, or 18.11.6. The vulnerabilities include high-risk flaws with CVSS scores of 8.7 and 8.0, affecting components like the Analytics Dashboard and Web IDE workbench, potentially allowing session hijacking and sensitive data theft. Specific vulnerabilities include improper input sanitization and path validation issues.
Older versions from 19.1 prior to 19.1.1 and 18.11 prior to 18.11.6 are impacted. Immediate upgrade is strongly recommended to secure environments against exploitation.