VDB
BIT-gitea-2025-68939
BIT-gitea-2025-68939
PUBLISHED
CVSS 5.300000190734863 MEDIUM
Gitea before 1.23.0 allows attackers to add attachments with forbidden file extensions by editing an attachment name via an attachment API.
Risk Scores
CVSS 3.1
5.300000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bitnami | gitea | 0, 0, 0 |
Timeline
- Jan 3, 2026 CVE Published
- Jan 3, 2026 CVE Updated