CVE-2024-6886

Severity CVSS v4.0:

Pending analysis

Type:

CWE-79 Cross-Site Scripting (XSS)

Publication date:

06/08/2024

Last modified:

06/08/2024

Description

Improper Neutralization of Input During Web Page Generation (XSS or &#39;Cross-site Scripting&#39;) vulnerability in Gitea Gitea Open Source Git Server allows Stored XSS.This issue affects Gitea Open Source Git Server: 1.22.0.

Impact

References to Advisories, Solutions, and Tools

https://blog.gitea.com/release-of-1.22.1/
https://github.com/go-gitea/gitea/pull/31200