Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gitea gitea vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2019-11229
models/repo_mirror.go in Gitea prior to 1.7.6 and 1.8.x prior to 1.8-RC3 mishandles mirror repo URL settings, leading to remote code execution.
Gitea Gitea 1.8.0
Gitea Gitea
7.5
CVSSv3
CVE-2019-11228
repo/setting.go in Gitea prior to 1.7.6 and 1.8.x prior to 1.8-RC3 does not validate the form.MirrorAddress before calling SaveAddress.
Gitea Gitea 1.8.0
Gitea Gitea
6.1
CVSSv3
CVE-2019-1010314
Gitea 1.7.2, 1.7.3 is affected by: Cross Site Scripting (XSS). The impact is: execute JavaScript in victim's browser, when the vulnerable repo page is loaded. The component is: repository's description. The attack vector is: victim must navigate to public and affected r...
Gitea Gitea 1.7.3
Gitea Gitea 1.7.2
8.6
CVSSv3
CVE-2018-15192
An SSRF vulnerability in webhooks in Gitea up to and including 1.5.0-rc2 and Gogs up to and including 0.11.53 allows remote malicious users to access intranet services.
Gogs Gogs
Gitea Gitea 1.5.0
Gitea Gitea
6.5
CVSSv3
CVE-2022-38183
In Gitea prior to 1.16.9, it was possible for users to add existing issues to projects. Due to improper access controls, an attacker could assign any issue to any project in Gitea (there was no permission check for fetching the issue). As a result, the attacker would get access t...
Gitea Gitea
9.8
CVSSv3
CVE-2022-42968
Gitea prior to 1.17.3 does not sanitize and escape refs in the git backend. Arguments to git commands are mishandled.
Gitea Gitea
4.4
CVSSv3
CVE-2023-3515
Open Redirect in GitHub repository go-gitea/gitea before 1.19.4.
Gitea Gitea
6.5
CVSSv3
CVE-2022-38795
In Gitea up to and including 1.17.1, repo cloning can occur in the migration function.
Gitea Gitea
5.4
CVSSv3
CVE-2022-1928
Cross-site Scripting (XSS) - Stored in GitHub repository go-gitea/gitea before 1.16.9.
Gitea Gitea
6.1
CVSSv3
CVE-2022-1058
Open Redirect on login in GitHub repository go-gitea/gitea before 1.16.5.
Gitea Gitea
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »