Gitea 1.7.2, 1.7.3 is affected by: Cross Site Scripting (XSS). The impact is: execute JavaScript in victim's browser, when the vulnerable repo page is loaded. The component is: repository's description. The attack vector is: victim must navigate to public and affected repo page.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
gitea gitea 1.7.3 |
||
gitea gitea 1.7.2 |