Количество 3
Количество 3
CVE-2026-20883
Gitea's stopwatch API does not re-validate repository access permissions. After a user's access to a private repository is revoked, they may still view issue titles and repository names through previously started stopwatches.
CVE-2026-20883
Gitea's stopwatch API does not re-validate repository access permissio ...
GHSA-j8xr-c56q-m8jj
Gitea improperly exposes issue titles and repository names through previously started stopwatches
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2026-20883 Gitea's stopwatch API does not re-validate repository access permissions. After a user's access to a private repository is revoked, they may still view issue titles and repository names through previously started stopwatches. | 0% Низкий | 17 дней назад | |
| CVE-2026-20883 Gitea's stopwatch API does not re-validate repository access permissio ... | 0% Низкий | 17 дней назад | |
| GHSA-j8xr-c56q-m8jj Gitea improperly exposes issue titles and repository names through previously started stopwatches | 0% Низкий | 17 дней назад |
Уязвимостей на страницу