CVE-2025-68946
In Gitea before 1.20.1, a forbidden URL scheme such as javascript: can be used for a link, aka XSS.
More information : https://blog.gitea.com/release-of-1.20.1/
In Gitea before 1.20.1, a forbidden URL scheme such as javascript: can be used for a link, aka XSS.
More information : https://blog.gitea.com/release-of-1.20.1/