CVE-2025-68946
Publication date 26 December 2025
Last updated 26 December 2025
Ubuntu priority
Description
In Gitea before 1.20.1, a forbidden URL scheme such as javascript: can be used for a link, aka XSS.
Publication date 26 December 2025
Last updated 26 December 2025
Ubuntu priority
In Gitea before 1.20.1, a forbidden URL scheme such as javascript: can be used for a link, aka XSS.