Cfi-Gb

**Name of the Vulnerable Software and Affected Versions** Gitea Open Source Git Server version 1.22.0 **Description** The issue affects Gitea Open Source Git Server due to improper neutralization of input during web page generation, allowing Stored XSS. This can enable a remote attacker to conduct a cross-site scripting attack. **Recommendations** For version 1.22.0, upgrade to version 1.23.0 to fix this issue. As a temporary workaround, consider restricting access to sensitive areas of the web application to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Greenbone Security Assistant versions prior to 7.0.3 Greenbone OS versions prior to 5.0.0 **Description** The issue allows Host Header Injection. **Recommendations** For Greenbone Security Assistant versions prior to 7.0.3, update to version 7.0.3 or later. For Greenbone OS versions prior to 5.0.0, update to version 5.0.0 or later.