Loading HuntDB...

Vulnerability Intelligence by wss.sh

Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog Latest Updates Security News

More Sources

HackerOne Reports

Bug bounty disclosures

WordPress Vulnerabilities

WordPress plugins & themes

Tools & Data

Trending Insights

Popular vulnerabilities

Advanced Search

Filter & search CVEs

Product Inventory

Software & vendors

Sign In Sign Up

CVE-2024-6886

UNKNOWN

Published 2024-08-06T03:23:21.692Z

Actions:

No CVSS data available

Description

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Gitea Gitea Open Source Git Server allows Stored XSS.This issue affects Gitea Open Source Git Server: 1.22.0.

Available Exploits

Gitea 1.22.0 - Cross-Site Scripting

Gitea 1.22.0 is vulnerable to a Stored Cross-Site Scripting (XSS) vulnerability. This vulnerability allows an attacker to inject malicious scripts that get stored on the server and executed in the context of another user's session.

ID: CVE-2024-6886

Author: soonghee2 Medium

References:

Related News

No news articles found for this CVE.

Affected Products

Gitea Open Source Git Server

Affected Versions:

1.22.0

gitea

Affected Versions:

1.22.0

References

https://github.com/go-gitea/gitea/pull/31200

https://blog.gitea.com/release-of-1.22.1/

Published: 2024-08-06T03:23:21.692Z

Last Modified: 2024-08-06T14:30:41.836Z

Copied to clipboard!