First published: Tue Feb 08 2022(Updated: )
Gitea before 1.4.3 is affected by URL Redirection to Untrusted Site ('Open Redirect') via internal URLs.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Gitea Gitea | <1.4.3 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2021-45328 is a vulnerability in Gitea before version 1.4.3 that allows for URL redirection to untrusted sites, also known as an Open Redirect.
CVE-2021-45328 has a severity rating of 6.1, which is considered medium.
CVE-2021-45328 affects Gitea versions before 1.4.3 and introduces a URL redirection vulnerability that can lead to open redirects to untrusted sites.
To fix CVE-2021-45328, you should upgrade Gitea to version 1.4.3 or later, as this version includes a fix for the URL redirection vulnerability.
Yes, you can find additional information about CVE-2021-45328 in the following references: [Reference 1](https://blog.gitea.io/2018/06/release-of-1.4.3/) and [Reference 2](https://github.com/go-gitea/gitea/issues/4332).