PT-2025-53447 · Gitea · Gitea

Kim Endisch

·

Published

2025-12-26

·

Updated

2026-01-06

·

CVE-2025-68945

CVSS v3.1

5.8

Medium

VectorAV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N
Name of the Vulnerable Software and Affected Versions Gitea versions prior to 1.21.2
Description An anonymous user can access a private user's project.
Recommendations Update to version 1.21.2 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-359

Related Identifiers

BIT-GITEA-2025-68945
CVE-2025-68945
GHSA-7XQ4-MWCP-Q8FX
GO-2025-4262
SUSE-SU-2026:0037-1

Affected Products

Gitea