Gitea before 1.11.2 is affected by Trusting HTTP Permission Methods on the Server Side when referencing the vulnerable admin or user API. which could let a remote malisious user execute arbitrary code.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Alpine | edge-community | noarch | gitea | < 1.11.2-r0 | UNKNOWN |
Alpine | 3.16-community | noarch | gitea | < 1.11.2-r0 | UNKNOWN |
Alpine | 3.17-community | noarch | gitea | < 1.11.2-r0 | UNKNOWN |
Alpine | 3.18-community | noarch | gitea | < 1.11.2-r0 | UNKNOWN |
Alpine | 3.19-community | noarch | gitea | < 1.11.2-r0 | UNKNOWN |