3 matches found
CVE-2019-11228
repo/setting.go in Gitea before 1.7.6 and 1.8.x before 1.8-RC3 does not validate the form.MirrorAddress before calling SaveAddress...
Gitea < 1.7.6 or < 1.8.0-rc3 Multiple Vulnerabilities
Gitea is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:gitea:gitea"; if description...
CVE-2019-11228
CVE-2019-11228 (Gitea) affects the Go project github.com/go-gitea/gitea. The root cause is improper input validation in repo/setting.go: before SaveAddress, the code does not validate form.MirrorAddress, which can lead to unintended effects. Affected versions are Gitea before 1.7.6 and 1.8.x befo...