Lucene search
K

4 matches found

Veracode
Veracode
added 2026/06/17 1:3 p.m.10 views

Information Exposure

Gitea is vulnerable to Information Exposure. The vulnerability is due to missing reqRepoReaderunit.TypeCode authorization checks on the issuetemplates, issueconfig, and issueconfig/validate API endpoints, which allows an attacker to access and retrieve repository issue template and configuration...

4.3CVSS5.2AI score0.00283EPSS
Exploits0References6Affected Software1
OSV
OSV
added 2026/06/16 11:41 p.m.7 views

GHSA-3FWP-P5RJ-2PXF Gitea: Missing repository-unit authorization on issue-template API endpoints

Summary Three Gitea API endpoints — GET /repos/owner/repo/issuetemplates, GET /repos/owner/repo/issueconfig and GET /repos/owner/repo/issueconfig/validate — read files from the repository's Code default branch .gitea/ISSUETEMPLATE/ and issueconfig.yaml and return their contents, but are registere...

4.3CVSS5.3AI score0.00283EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 7:39 a.m.8 views

CVE-2018-4342

A configuration issue was addressed with additional restrictions. This issue affected versions prior to macOS Mojave 10.14.1...

5.5CVSS6.2AI score0.00301EPSS
Exploits0References1
OSV
OSV
added 2016/04/05 10:26 a.m.3 views

SUSE-SU-2016:0954-1 Security update for quagga

This update for quagga fixes one security issue: - bsc770619: Disallow unprivileged users to enter config directory /etc/quagga group: quagga, mode: 750 and read configuration files installed there group: quagga, mode: 640...

7.1AI score
Exploits0References2
Rows per page
Query Builder