Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gitea gitea vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2021-45331
An Authentication Bypass vulnerability exists in Gitea prior to 1.5.0, which could let a malicious user gain privileges. If captured, the TOTP code for the 2FA can be submitted correctly more than once.
Gitea Gitea
5.4
CVSSv3
CVE-2022-1928
Cross-site Scripting (XSS) - Stored in GitHub repository go-gitea/gitea before 1.16.9.
Gitea Gitea
7.5
CVSSv3
CVE-2022-27313
An arbitrary file deletion vulnerability in Gitea v1.16.3 allows malicious users to cause a Denial of Service (DoS) via deleting the configuration file.
Gitea Gitea 1.16.3
8.1
CVSSv3
CVE-2021-39867
In all versions of GitLab CE/EE since version 8.15, a DNS rebinding vulnerability in Gitea Importer may be exploited by an malicious user to trigger Server Side Request Forgery (SSRF) attacks.
Gitlab Gitlab 4.3.0
Gitlab Gitlab
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-36954
CVE-2024-36933
CVE-2024-24919
CVE-2024-36923
CVE-2024-2961
CVE-2024-36925
bypass
encryption
command injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4