浏览 28+ 条来自 NVD 与 CNNVD 的 CVE 漏洞,配 AI 中文翻译、AI POC 生成、每日情报;可按厂商、产品、严重等级、CWE 检索。
| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-20912 | Gitea: Cross-Repository Authorization Bypass via Release Attachment Linking Leads to Private Attachment Disclosure | Gitea | Gitea Open Source Git Server | - | - | 2026-01-22 22:01:52 | Deep Dive |
| CVE-2026-20904 | Gitea: Broken access control in OpenID visibility toggle enables cross-user visibility changes | Gitea | Gitea Open Source Git Server | - | - | 2026-01-22 22:01:52 | Deep Dive |
| CVE-2026-20897 | Gitea Git LFS Lock Deletion Broken Access Control (Cross-Repo IDOR) | Gitea | Gitea Open Source Git Server | - | - | 2026-01-22 22:01:52 | Deep Dive |
| CVE-2026-20888 | Gitea Pull Requests Auto-Merge: Read-Only Users Can Cancel Scheduled Auto-Merge via Web Endpoint (Authorization Bypass) | Gitea | Gitea Open Source Git Server | - | - | 2026-01-22 22:01:51 | Deep Dive |
| CVE-2026-20883 | Gitea Stopwatch API Missing Authorization Check Leads to Post-Revocation Information Disclosure | Gitea | Gitea Open Source Git Server | - | - | 2026-01-22 22:01:51 | Deep Dive |
| CVE-2026-20800 | Notification API Leaks Private Repository Issue Titles After Collaborator Permission Revocation | Gitea | Gitea Open Source Git Server | - | - | 2026-01-22 22:01:50 | Deep Dive |
| CVE-2026-20750 | Gitea Organization Projects Cross-Organization Authorization Bypass via Project ID (IDOR) | Gitea | Gitea Open Source Git Server | - | - | 2026-01-22 22:01:50 | Deep Dive |
| CVE-2026-20736 | Gitea Web Attachment Deletion: Cross-Repository Unauthorized Deletion via Missing Repo Ownership Check | Gitea | Gitea Open Source Git Server | - | - | 2026-01-22 22:01:50 | Deep Dive |
| CVE-2026-0798 | Gitea Release Email Notifications Leak Private Repository Release Details After Access Revocation | Gitea | Gitea Open Source Git Server | - | - | 2026-01-22 22:01:49 | Deep Dive |
| CVE-2025-69413 | Gitea 安全漏洞 | Gitea | Gitea | Medium | 5.3 | 2026-01-01 04:39:48 | Deep Dive |
| CVE-2025-68946 | Gitea 安全漏洞 | Gitea | Gitea | Medium | 5.4 | 2025-12-26 04:14:04 | Deep Dive |
| CVE-2025-68945 | Gitea 安全漏洞 | Gitea | Gitea | Medium | 5.8 | 2025-12-26 03:58:47 | Deep Dive |
| CVE-2025-68944 | Gitea 安全漏洞 | Gitea | Gitea | Medium | 5.0 | 2025-12-26 03:37:29 | Deep Dive |
| CVE-2025-68943 | Gitea 安全漏洞 | Gitea | Gitea | Medium | 5.3 | 2025-12-26 03:19:45 | Deep Dive |
| CVE-2025-68942 | Gitea 安全漏洞 | Gitea | Gitea | Medium | 5.4 | 2025-12-26 02:50:35 | Deep Dive |
| CVE-2025-68941 | Gitea 安全漏洞 | Gitea | Gitea | Medium | 4.9 | 2025-12-26 02:31:59 | Deep Dive |
| CVE-2025-68940 | Gitea 安全漏洞 | Gitea | Gitea | Low | 3.1 | 2025-12-26 02:14:52 | Deep Dive |
| CVE-2025-68939 | Gitea 安全漏洞 | Gitea | Gitea | High | 8.2 | 2025-12-26 02:04:00 | Deep Dive |
| CVE-2025-68938 | Gitea 安全漏洞 | Gitea | Gitea | Medium | 4.3 | 2025-12-26 01:19:11 | Deep Dive |
| CVE-2024-6886 | Inproper Sanitation of field leading to stored XSS | Gitea | Gitea Open Source Git Server | - | - | 2024-08-06 03:23:22 | Deep Dive |