VDB
CVE-2025-68939
CVE-2025-68939
PUBLISHED
Gitea before 1.23.0 allows attackers to add attachments with forbidden file extensions by editing an attachment name via an attachment API.
EPSS 0.01% · 1.2th percentile
Risk Scores
EPSS Score
0.01%
1.2th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bitnami | gitea | 0, 0 |
| Bitnami | gitea | 0 |
Timeline
- Dec 26, 2025 CVE Published
- Dec 26, 2025 EPSS Score
- Dec 26, 2025 PoC Published
- Dec 30, 2025 EPSS Score
- Jan 2, 2026 EPSS Score
- Jan 6, 2026 EPSS Score
- Jan 9, 2026 EPSS Score
- Jan 13, 2026 EPSS Score
- Jan 17, 2026 EPSS Score
- Jan 20, 2026 EPSS Score
- Jan 24, 2026 EPSS Score
- Jan 27, 2026 EPSS Score