Disclosure Date 2020/10/22

CVE-2020-28991

Server-side Request Forgery in Gitea

Giteaのサーバサイドのリクエストフォージェリ

Credit

stypr (@stereotype32)

Affected-Versions

  • v0.9.99 up to v1.12.5, Fixed in v1.12.6

CWE

CWE-918

Description

Gitea 0.9.99 through 1.12.x before 1.12.6 does not prevent a git protocol path that specifies a TCP port number and also contains newlines (with URL encoding) in ParseRemoteAddr in modules/auth/repo_form.go.

Product-URLs

CVE-2020-28991

Back