CVE-2021-45330
Summary: In Gitea up to 1.15.7, a client-side cookie handling issue leaves sessions reusable on the server, enabling a malicious user to gain privileges. The root cause is inadequate deletion/cleanup of cookies that maintain server-side sessions. Impact is described as privilege gain with high CV...