Количество 3
Количество 3
CVE-2026-20912
Gitea does not properly validate repository ownership when linking attachments to releases. An attachment uploaded to a private repository could potentially be linked to a release in a different public repository, making it accessible to unauthorized users.
CVE-2026-20912
Gitea does not properly validate repository ownership when linking att ...
GHSA-4xx9-vc8v-87hv
Gitea does not properly validate repository ownership when linking attachments to releases
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2026-20912 Gitea does not properly validate repository ownership when linking attachments to releases. An attachment uploaded to a private repository could potentially be linked to a release in a different public repository, making it accessible to unauthorized users. | 0% Низкий | 18 дней назад | |
| CVE-2026-20912 Gitea does not properly validate repository ownership when linking att ... | 0% Низкий | 18 дней назад | |
| GHSA-4xx9-vc8v-87hv Gitea does not properly validate repository ownership when linking attachments to releases | 0% Низкий | 17 дней назад |
Уязвимостей на страницу