VDB

CVE-2025-68943

CVE-2025-68943 PUBLISHED

Gitea before 1.21.8 inadvertently discloses users' login times by allowing (for example) the lastlogintime explore/users sort order.

EPSS 0.01% · 2.1th percentile

Risk Scores

EPSS Score
0.01%
2.1th percentile

Affected Products

VendorProductVersions
Bitnamigitea0
Bitnamigitea0, 0

Timeline

  • Dec 26, 2025 CVE Published
  • Dec 26, 2025 EPSS Score
  • Dec 26, 2025 PoC Published
  • Dec 30, 2025 EPSS Score
  • Jan 2, 2026 EPSS Score
  • Jan 6, 2026 EPSS Score
  • Jan 9, 2026 EPSS Score
  • Jan 13, 2026 EPSS Score
  • Jan 17, 2026 EPSS Score
  • Jan 20, 2026 EPSS Score
  • Jan 24, 2026 EPSS Score
  • Jan 28, 2026 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›