Lucene search
Veracode Vulnerability DatabaseVERACODE:34610HistoryMar 11, 2022 - 9:33 a.m.
Authorization Bypass
2022-03-1109:33:43
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
16
github.com/go-gitea/gitea
authorization bypass
pam module
EPSS
0.001
Percentile
30.4%
github.com/go-gitea/gitea is vulnerable to authorization bypass. The vulnerability exists in the Auth function in pam.go due to missing checks in the pam module, allowing a malicious attacker to log in and perform unauthorized actions.
References
Related
ubuntucve
ubuntucve
CVE-2022-0905
2022-03-10 00:00:00
nessus
nessus
huntr
huntr
Improper Authorization
2022-03-06 10:22:29
github
github
Gitea Missing Authorization vulnerability
2022-03-11 00:02:35
nvd
nvd
CVE-2022-0905
2022-03-10 15:15:10
osv
osv
BIT-gitea-2022-0905
2024-03-06 10:53:40
CVE-2022-0905
2022-03-10 15:15:10
Gitea Missing Authorization vulnerability
2022-03-11 00:02:35
freebsd
freebsd
gitea -- Improper/incorrect authorization
2022-03-06 00:00:00
cnvd
cnvd
Gitea Authorization Error Vulnerability
2022-03-11 00:00:00
gitlab
gitlab
Improper Authorization in Gitea
2022-03-11 00:00:00
prion
prion
Authorization
2022-03-10 15:15:00
cvelist
cvelist
CVE-2022-0905 Missing Authorization in go-gitea/gitea
2022-03-10 00:00:00
cve
cve
CVE-2022-0905
2022-03-10 15:15:10
openvas
openvas
Gitea < 1.16.4 Improper Authorization Vulnerability
2022-03-15 00:00:00