Lucene search
K

6 matches found

ATTACKERKB
ATTACKERKB
added yesterday2 views

CVE-2026-28705

Gitea versions before 1.25.5 use release tag names and asset names as filesystem path components when dumping release assets, allowing specially crafted names to affect dump output paths...

6AI score
Exploits0References5
EUVD
EUVD
added yesterday3 views

EUVD-2026-41628

Gitea versions before 1.25.5 do not consistently enforce OAuth2 authorization code expiry and single-use behavior during token exchange...

6AI score
Exploits0References4
ATTACKERKB
ATTACKERKB
added yesterday2 views

CVE-2026-26247

Gitea versions before 1.25.5 do not persist the OAuth2 PKCE S256 challenge method correctly during authorization, allowing token exchange without the expected verifier check...

5.9AI score
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/05/22 5:43 p.m.12 views

CVE-2020-14144

The git hook feature in Gitea 1.1.0 through 1.12.5 might allow for authenticated remote code execution in customer environments where the documentation was not understood e.g., one viewpoint is that the dangerousness of this feature should be documented immediately above the ENABLEGITHOOKS line i...

7.2CVSS8AI score0.93691EPSS
Exploits12
Positive Technologies
Positive Technologies
added 2022/05/02 12:0 a.m.4 views

PT-2022-20314

Name of the Vulnerable Software and Affected Versions Gitea versions 1.16.6 and prior Description The issue is related to the improper handling of git fetch, allowing for shell command injection. This is due to the lack of escaping for the git fetch remote. There is no information provided about...

9.8CVSS6.9AI score0.87678EPSS
Exploits11References36
OSV
OSV
added 2020/10/16 2:15 p.m.7 views

CVE-2020-14144

The git hook feature in Gitea 1.1.0 through 1.12.5 might allow for authenticated remote code execution in customer environments where the documentation was not understood e.g., one viewpoint is that the dangerousness of this feature should be documented immediately above the ENABLEGITHOOKS line i...

7.2CVSS6.3AI score0.08762EPSS
Exploits2References8
Rows per page
Query Builder