Code.Gitea.Io Gitea vulnerabilities
42 known vulnerabilities affecting code.gitea.io/gitea.
Total CVEs
42
CISA KEV
0
Public exploits
4
Exploited in wild
0
Severity breakdown
CRITICAL5HIGH5MEDIUM17LOW4UNKNOWN11
Vulnerabilities
Page 3 of 3
CVE-2021-45330CRITICAL≥ 0, < 1.6.02022-02-10
CVE-2021-45330 [CRITICAL] CWE-269 Improper Privilege Management in Gitea
Improper Privilege Management in Gitea
An issue exsits in Gitea through 1.15.7, which could let a malicious user gain privileges due to client side cookies not being deleted and the session remains valid on the server side for reuse.
ghsaosv
CVE-2021-28378MEDIUM≥ 0, < 1.13.42021-09-27
CVE-2021-28378 [MEDIUM] CWE-79 Cross-site Scripting in Gitea
Cross-site Scripting in Gitea
Gitea 1.12.x and 1.13.x before 1.13.4 allows XSS via certain issue data in some situations.
ghsaosv
← Previous3 / 3