Explore Vulnerabilities SQL Injection Cross-Site Scripting (XSS) Buffer Overflow Denial of Service Remote Code Execution Remote File Include Directory Traversal HTML Injection Stack Overflow Authentication Bypass
by: Catalin Iovita & Alexandru Postolache vendor: Gitea Show More Stored XSS in Gitea Gitea version 1.22.0 is susceptible to a Stored Cross-Site Scripting (XSS) vulnerability. This security flaw enables a malicious actor to insert harmful scripts that are stored on the server and run within the context of another user's session. 6.1 CVSS HIGH Stored Cross-Site Scripting (XSS) 79 CWE Product Name Gitea Platforms Tested Linux Affected Version From: 1.22.0 To: 1.22.0 2024