CVE-2021-45329

Name of the Vulnerable Software and Affected Versions Gitea versions prior to 1.5.1

Description A Cross Site Scripting (XSS) issue exists in the repository settings, specifically inside the external wiki/issue tracker URL field. This allows for potential exploitation. No information is provided about the estimated number of affected devices or real-world incidents.

Recommendations For versions prior to 1.5.1, update to version 1.5.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the external wiki/issue tracker URL field in the repository settings until a patch is applied.