Количество 4
Количество 4
CVE-2022-38183
In Gitea before 1.16.9, it was possible for users to add existing issues to projects. Due to improper access controls, an attacker could assign any issue to any project in Gitea (there was no permission check for fetching the issue). As a result, the attacker would get access to private issue titles.
CVE-2022-38183
In Gitea before 1.16.9, it was possible for users to add existing issues to projects. Due to improper access controls, an attacker could assign any issue to any project in Gitea (there was no permission check for fetching the issue). As a result, the attacker would get access to private issue titles.
CVE-2022-38183
In Gitea before 1.16.9, it was possible for users to add existing issu ...
GHSA-fhv8-m4j4-cww2
Gitea allowed assignment of private issues
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2022-38183 In Gitea before 1.16.9, it was possible for users to add existing issues to projects. Due to improper access controls, an attacker could assign any issue to any project in Gitea (there was no permission check for fetching the issue). As a result, the attacker would get access to private issue titles. | CVSS3: 6.5 | 0% Низкий | больше 3 лет назад |
 | CVE-2022-38183 In Gitea before 1.16.9, it was possible for users to add existing issues to projects. Due to improper access controls, an attacker could assign any issue to any project in Gitea (there was no permission check for fetching the issue). As a result, the attacker would get access to private issue titles. | CVSS3: 6.5 | 0% Низкий | больше 3 лет назад |
| CVE-2022-38183 In Gitea before 1.16.9, it was possible for users to add existing issu ... | CVSS3: 6.5 | 0% Низкий | больше 3 лет назад |
| GHSA-fhv8-m4j4-cww2 Gitea allowed assignment of private issues | CVSS3: 6.5 | 0% Низкий | больше 3 лет назад |
Уязвимостей на страницу