VDB
BIT-gitea-2025-68946
BIT-gitea-2025-68946
PUBLISHED
CVSS 5.400000095367432 MEDIUM
In Gitea before 1.20.1, a forbidden URL scheme such as javascript: can be used for a link, aka XSS.
Risk Scores
CVSS 3.1
5.400000095367432
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bitnami | gitea | 0, 0, 0 |
Timeline
- Jan 1, 2026 CVE Published
- Jan 1, 2026 CVE Updated