2 matches found
CVE-2026-58422
CVE-2026-58422 describes an improper authorization issue in the OAuth sign-in callback, where administrator-disabled accounts can be silently re-enabled. The linked sources corroborate this description and reference related Gitea release notes, but the provided documents do not specify affected p...
CVE-2026-58422
Improper authorization on OAuth sign-in callback silently re-enables administrator-disabled accounts...