AVG-1689 log
| Package | gitea |
| Status | Fixed |
| Severity | High |
| Type | cross-site scripting |
| Affected | 1.13.2-1 |
| Fixed | 1.13.4-1 |
| Current | 1.25.1-1 [extra] |
| Ticket | None |
| Created | Mon Mar 15 07:36:05 2021 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2021-28378 | High | Yes | Cross-site scripting | Gitea 1.12.x and 1.13.x before 1.13.4 allows cross-site scripting (XSS) via certain issue data in some situations. |