CVE-2020-28991
Server-side Request Forgery in Gitea (Gitea における SSRF (サーバサイドリクエストフォージェリ))
Gitea 0.9.99 through 1.12.x before 1.12.6 does not prevent a git protocol path that specifies a TCP port number and also contains newlines (with URL encoding) in ParseRemoteAddr in modules/auth/repo_form.go.
Disclosure Date
2020/10/22
Credit
stypr (@stereotype32)
Affected-Versions
Gitea: v0.9.99 to v1.12.5, Fixed in v1.12.6
CWE
- CWE-918
