PT-2025-53441 · Gitea · Gitea
Inferenceus
·
Published
2025-12-26
·
Updated
2026-01-06
·
CVE-2025-68943
CVSS v3.1
5.3
Medium
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Gitea versions prior to 1.21.8
Description
The software reveals user login times due to allowing sorting by last login time in the explore/users section.
Recommendations
Update to version 1.21.8 or later.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Gitea