Количество 4
Количество 4
CVE-2026-20800
Gitea's notification API does not re-validate repository access permissions when returning notification details. After a user's access to a private repository is revoked, they may still view issue and pull request titles through previously received notifications.
CVE-2026-20800
Gitea's notification API does not re-validate repository access permis ...
ROS-20260224-73-0033
Уязвимость gitea
GHSA-2vgv-hgv4-22mh
Gitea improperly exposes issue and pull request titles
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2026-20800 Gitea's notification API does not re-validate repository access permissions when returning notification details. After a user's access to a private repository is revoked, they may still view issue and pull request titles through previously received notifications. | CVSS3: 6.5 | 0% Низкий | 2 месяца назад |
| CVE-2026-20800 Gitea's notification API does not re-validate repository access permis ... | CVSS3: 6.5 | 0% Низкий | 2 месяца назад |
 | ROS-20260224-73-0033 Уязвимость gitea | CVSS3: 6.5 | 0% Низкий | около 1 месяца назад |
| GHSA-2vgv-hgv4-22mh Gitea improperly exposes issue and pull request titles | 0% Низкий | 2 месяца назад |
Уязвимостей на страницу