Описание
Gitea vulnerable to Cross-site Scripting
In Gitea before 1.20.1, a forbidden URL scheme such as javascript: can be used for a link, aka XSS.
Пакеты
Наименование
code.gitea.io/gitea
go
Затронутые версииВерсия исправления
< 1.20.1
1.20.1
Связанные уязвимости
CVSS3: 5.4
ubuntu
21 день назад
In Gitea before 1.20.1, a forbidden URL scheme such as javascript: can be used for a link, aka XSS.
CVSS3: 5.4
nvd
21 день назад
In Gitea before 1.20.1, a forbidden URL scheme such as javascript: can be used for a link, aka XSS.
CVSS3: 5.4
debian
21 день назад
In Gitea before 1.20.1, a forbidden URL scheme such as javascript: can ...