CVE-2025-68941

CVE-2025-68941

Gitea before 1.22.3 mishandles access to a private resource upon receiving an API token with scope limited to public resources.

CVE-2025-68941

Gitea before 1.22.3 mishandles access to a private resource upon receiving an API token with scope limited to public resources.

GHSA-xfq3-qj7j-4565

Gitea mishandles access to a private resource upon receiving an API token with scope limited to public resources