Security Advisory

CVE-2025-68946

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-26 04:14:03
Last updated 2025-12-26 18:59:45
Assigner mitre
State PUBLISHED

Description

In Gitea before 1.20.1, a forbidden URL scheme such as javascript: can be used for a link, aka XSS.

← Browse all CVEs View on cve.org ↗