CVE-2026-0798 | Gitea up to 1.25.3 Notifications access control (GHSA-f4wq-6ww5-m56p)

Inserito da Angelo Barbosa | Gen 23, 2026 | CVE

A vulnerability identified as critical has been detected in Gitea up to 1.25.3. The affected element is an unknown function of the component Notifications Handler. The manipulation leads to improper access controls.

This vulnerability is documented as CVE-2026-0798. The attack can be initiated remotely. There is not any exploit available.

You should upgrade the affected component.

CVE-2026-0798 | Gitea up to 1.25.3 Notifications access control (GHSA-f4wq-6ww5-m56p)

Post correlati

CVE-2024-9622 | resteasy-netty4-cdi request smuggling

CVE-2025-13209 | bestfeng oa_git_free up to 9.5 WorkflowPredefineController.java updateWriteBack writeProp xml external entity reference

CVE-2024-20721 | Adobe Acrobat Reader up to 120.0.2210.91 on Edge denial of service

CVE-2024-12454 | Affiliate Program Suite Plugin up to 1.1.23 on WordPress cross-site request forgery