CVE-2021-45325

CVE-2021-45325

EPSS 1.0%

Server Side Request Forgery (SSRF) vulneraility exists in Gitea before 1.7.0 using the OpenID URL.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://blog.gitea.io/2019/01/gitea-1.7.0-is-released/https://github.com/go-gitea/gitea/pull/5705