Headline
GHSA-cf6v-9j57-v6r6: code.gitea.io/gitea Open Redirect vulnerability
Open Redirect in GitHub repository go-gitea/gitea prior to 1.19.4. This is most likely a post-auth redirect plus it is a POST based request scenario, so less likely that can be exploited or chained with other bugs that can cause phishing or credential theft.
code.gitea.io/gitea Open Redirect vulnerability
Low severity GitHub Reviewed Published Jul 5, 2023 to the GitHub Advisory Database • Updated Jul 6, 2023
Related news
Gentoo Linux Security Advisory 202312-13
Gentoo Linux Security Advisory 202312-13 - Multiple vulnerabilities have been discovered in Gitea, the worst of which could result in information leakage. Versions greater than or equal to 1.20.6 are affected.
CVE-2023-3515: Fix open redirect check for more cases (#25143) · go-gitea/gitea@9aaaf98
Open Redirect in GitHub repository go-gitea/gitea prior to 1.19.4.