CVE-2021-45328

Description

Gitea before 1.4.3 is affected by URL Redirection to Untrusted Site ('Open Redirect') via internal URLs.

Affected packages (3)

• Bitnami/giteafrom 0, < 1.4.3
• Go/github.com/go-gitea/giteafrom 0, < 1.4.3
• Go/github.com/go-gitea/giteafrom 0, < 1.4.3

CVSS scores

References (6)

• ADVISORYhttps://github.com/advisories/GHSA-36h2-95gj-w488
• ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2021-45328
• PATCHhttps://github.com/go-gitea/gitea
• WEBhttps://blog.gitea.io/2018/06/release-of-1.4.3
• WEBhttps://blog.gitea.io/2018/06/release-of-1.4.3/
• WEBhttps://github.com/go-gitea/gitea/issues/4332