Количество 5
Количество 5
CVE-2026-20736
Gitea does not properly verify repository context when deleting attachments. A user who previously uploaded an attachment to a repository may be able to delete it after losing access to that repository by making the request through a different repository they can access.
CVE-2026-20736
Gitea does not properly verify repository context when deleting attachments. A user who previously uploaded an attachment to a repository may be able to delete it after losing access to that repository by making the request through a different repository they can access.
CVE-2026-20736
Gitea does not properly verify repository context when deleting attach ...
ROS-20260224-73-0029
Уязвимость gitea
GHSA-hgr3-x44x-33hx
Gitea has improper access control for uploaded attachments
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2026-20736 Gitea does not properly verify repository context when deleting attachments. A user who previously uploaded an attachment to a repository may be able to delete it after losing access to that repository by making the request through a different repository they can access. | CVSS3: 7.5 | 0% Низкий | 2 месяца назад |
 | CVE-2026-20736 Gitea does not properly verify repository context when deleting attachments. A user who previously uploaded an attachment to a repository may be able to delete it after losing access to that repository by making the request through a different repository they can access. | CVSS3: 7.5 | 0% Низкий | 2 месяца назад |
| CVE-2026-20736 Gitea does not properly verify repository context when deleting attach ... | CVSS3: 7.5 | 0% Низкий | 2 месяца назад |
 | ROS-20260224-73-0029 Уязвимость gitea | CVSS3: 7.5 | 0% Низкий | около 1 месяца назад |
| GHSA-hgr3-x44x-33hx Gitea has improper access control for uploaded attachments | 0% Низкий | 2 месяца назад |
Уязвимостей на страницу