AVG-1689 log

Package gitea
Status Fixed
Severity High
Type cross-site scripting
Affected 1.13.2-1
Fixed 1.13.4-1
Current 1.15.7-1 [community]
Ticket None
Created Mon Mar 15 07:36:05 2021
Issue Severity Remote Type Description
CVE-2021-28378 High Yes Cross-site scripting
Gitea 1.12.x and 1.13.x before 1.13.4 allows cross-site scripting (XSS) via certain issue data in some situations.